*** This bug is a security vulnerability *** Public security bug reported:
There is pdns-recursor 3.1.4-6ubuntu1 in Hardy, which has a major security issue (see bug #502987). This bug was fixed in pdns-recursor 3.1.7 and above for every Ubuntu release except Hardy, because it would be too much of a hassle to rewrite the code. Because of this, pdns- recursor will not be included in hardy-security (see comments 19 and 20 of above bug). I thought at least it could be included in hardy-backports for whoever wants to upgrade. pdns-recursor 3.3 has a LOT of changes and improvements (beside this security fix) since version 3.1, so it would be a benefit to backport it to Hardy (and possibly Lucid for which I'll open a separate bugreport). I've managed to build it locally with pbuilder and in my PPA (https://launchpad.net/~cemc/+archive/ppa/+packages), without source changes, there are only a couple of (IMHO) minor changes to debian/* . It does need the -backports repo enabled when building because of debhelper >= 7 (which is backported to Hardy). Other than that seems pretty straightforward. I've build 3.3-1 from Oneiric two months ago, using it since on my Hardy server without problems. ** Affects: hardy-backports Importance: Undecided Status: New ** Visibility changed to: Public -- You received this bug notification because you are a member of Ubuntu Backporters, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/888627 Title: please backport pdns-recursor 3.3-2 from Precise To manage notifications about this bug go to: https://bugs.launchpad.net/hardy-backports/+bug/888627/+subscriptions -- ubuntu-backports mailing list ubuntu-backports@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-backports
