Merge ~lucaskanashiro/ubuntu/+source/ldns:sync into ubuntu/+source/ldns:debian/sid
Status: | Merged |
---|---|
Approved by: | Christian Ehrhardt |
Approved revision: | 146ef301def794e426fd46bf643873418edc4299 |
Merge reported by: | Christian Ehrhardt |
Merged at revision: | 146ef301def794e426fd46bf643873418edc4299 |
Proposed branch: | ~lucaskanashiro/ubuntu/+source/ldns:sync |
Merge into: | ubuntu/+source/ldns:debian/sid |
Diff against target: | 0 lines |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Christian Ehrhardt (community) | Approve | ||
Canonical Server | Pending | ||
Review via email: mp+375353@code.launchpad.net |
Description of the change
This is a sync request, all the delta is applied in the ldns Debian package version 1.7.0-4:
* SECURITY UPDATE: double-free in ldns_fget_token_l
- debian/
increment in parse.c.
- CVE-2017-1000231
* SECURITY UPDATE: double-free in ldns_str2rdf_
- debian/
size in str2host.c.
- CVE-2017-1000232
* Don't build-depend on python3-all-dev, the build rules don't handle
multiple versions of python3 correctly.
No critical bug was found and the upstream version didn't change. The main change in this version from what we have in Ubuntu is that the Ed25519 algorithm was enabled as described in d/changelog.
CVE-2017-1000231 & CVE-2017-1000232 - accepted in 1.7.0-4
Re-enable openssl1.1 & DANE TA usage - was cancelled out in 1.7.0-3ubuntu4
Don't build-depend on python3-all-dev - accepted in 1.7.0-3.1
All delta in Debian
Other Debian changes are usual housekeeping, ack to make this a sync.