freeipa team mailing list archive

Thread
Date
[Bug 2018050] Re: Merge bind9 from Debian unstable for mantic

To: freeipa@xxxxxxxxxxxxxxxxxxx
From: Lena Voytek <2018050@xxxxxxxxxxxxxxxxxx>
Date: Fri, 16 Jun 2023 16:44:15 -0000
Reply-to: Bug 2018050 <2018050@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx
** Merge proposal linked:
   https://code.launchpad.net/~lvoytek/ubuntu/+source/bind9/+git/bind9/+merge/444937

-- 
You received this bug notification because you are a member of FreeIPA,
which is subscribed to bind-dyndb-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/2018050

Title:
  Merge bind9 from Debian unstable for mantic

Status in bind-dyndb-ldap package in Ubuntu:
  New
Status in bind9 package in Ubuntu:
  In Progress

Bug description:
  Upstream: 9.18.14
  Debian:   1:9.18.13-1    1:9.19.11-1
  Ubuntu:   1:9.18.12-1ubuntu1

  Debian new has 1:9.19.11-1, which may be available for merge soon.

  If it turns out this needs a sync rather than a merge, please change
  the tag 'needs-merge' to 'needs-sync', and (optionally) update the
  title as desired.

  
  ### New Debian Changes ###

  bind9 (1:9.18.13-1) unstable; urgency=medium

    * New upstream version 9.18.13

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 15 Mar 2023 18:11:29 +0100

  bind9 (1:9.18.12-1) unstable; urgency=medium

    * New upstream version 9.18.12
    * Drop libtool-bin from B-D (Closes: #1022968)

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Fri, 10 Feb 2023 15:15:49 +0100

  bind9 (1:9.18.11-2) unstable; urgency=medium

    * Allow the named to use systemd notify service

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Thu, 26 Jan 2023 21:13:55 +0100

  bind9 (1:9.18.11-1) unstable; urgency=medium

    * New upstream version 9.18.11

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 25 Jan 2023 15:51:35 +0100

  bind9 (1:9.18.10-2) unstable; urgency=medium

    * Backport upstream feature to use sd_notify()
    * Use systemd notify for service readyness check (Closes: #994696)
    * apparmor.d: Allow named to read all OpenSSL config files.
      (Closes: #1025519)
    * apparmor.d: Allow named to query for hugepages support.
      (Closes: #1020315)
    * Fix path to README.Debian (Closes: #1016646)

   -- Bernhard Schmidt <berni@xxxxxxxxxx>  Thu, 22 Dec 2022 17:12:17
  +0100

  bind9 (1:9.18.10-1) unstable; urgency=medium

    * New upstream version 9.18.10

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 21 Dec 2022 18:00:33 +0100

  bind9 (1:9.18.9-1) unstable; urgency=medium

    * New upstream version 9.18.9

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 16 Nov 2022 14:00:05 +0100

  bind9 (1:9.18.8-1) unstable; urgency=medium

    * New upstream version 9.18.8

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 19 Oct 2022 14:58:38 +0200

  bind9 (1:9.18.7-1) unstable; urgency=medium

    * New upstream version 9.18.7
     - CVE-2022-2795: Processing large delegations may severely degrade
       resolver performance
     - CVE-2022-2881: Buffer overread in statistics channel code
     - CVE-2022-2906: Memory leaks in code handling Diffie-Hellman key
       exchange via TKEY RRs (OpenSSL 3.0.0+ only)
     - CVE-2022-3080: BIND 9 resolvers configured to answer from stale
       cache with zero stale-answer-client-timeout may terminate unexpectedly
     - CVE-2022-38177: Memory leak in ECDSA DNSSEC verification code
     - CVE-2022-38178: Memory leaks in EdDSA DNSSEC verification code

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 21 Sep 2022 12:48:36 +0200

  bind9 (1:9.18.6-2) unstable; urgency=medium

    * No-change source-only upload

   -- Bernhard Schmidt <berni@xxxxxxxxxx>  Mon, 05 Sep 2022 21:30:08
  +0200

  bind9 (1:9.18.6-1) unstable; urgency=medium

    * Disable treat-warnings-as-errors in sphinx-build
    * New upstream version 9.18.6

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Thu, 18 Aug 2022 09:39:20 +0200

  bind9 (1:9.18.5-1) unstable; urgency=medium

    * New upstream version 9.18.5

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Wed, 20 Jul 2022 16:40:31 +0200

  bind9 (1:9.18.4-2) unstable; urgency=medium

    [ Simon Deziel ]
    * debian/extras/etc/db.0: correct descriptive comment

    [ Bernhard Schmidt ]
    * Add sleep workaround in tests/simpletests (Closes: #1012059)

   -- Ondřej Surý <ondrej@xxxxxxxxxx>  Tue, 05 Jul 2022 12:58:06 +0200

  bind9 (1:9.18.4-1) unstable; urgency=medium


  ### Old Ubuntu Delta ###

  bind9 (1:9.18.12-1ubuntu1) lunar; urgency=medium

    * Merge with Debian unstable. Remaining changes:
      - Don't build dnstap as it depends on universe packages:
        + d/control: drop build-depends on libfstrm-dev, libprotobuf-c-dev and
          protobuf-c-compiler (universe packages)
        + d/dnsutils.install: don't install dnstap
        + d/rules: don't build dnstap nor install dnstap.proto
      - Add back apport:
        + d/bind9.apport: add back old bind9 apport hook, but without calling
          attach_conffiles() since that is already done by apport itself, with
          confirmation from the user.
        + d/control, d/rules: build-depends on dh-apport and use it
      - d/control: remove optional libjemalloc-dev Build-Depends as it is not in
        main.
      - d/NEWS: mention relevant packaging changes
      - Improve dep-8 test suite (LP #2003584):
        + d/t/zonetest: Add dep8 test for checking the domain zone creation process
        + d/t/control: Add new test outline

   -- Lena Voytek <lena.voytek@xxxxxxxxxxxxx>  Wed, 22 Feb 2023 10:10:14
  -0700

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/bind-dyndb-ldap/+bug/2018050/+subscriptions