Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Sat, Feb 12, 2011 at 01:09:30PM +0100, Julien Cristau wrote: > On Thu, Feb 3, 2011 at 07:58:24 +1000, Andrew Pollock wrote: > > > On Wed, Feb 02, 2011 at 09:51:05PM +0100, Moritz Mühlenhoff wrote: > > > > > > Hmm, that was a misunderstanding, then: It was tagged by release managers > > > as

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Thu, Feb 3, 2011 at 07:58:24 +1000, Andrew Pollock wrote: > On Wed, Feb 02, 2011 at 09:51:05PM +0100, Moritz Mühlenhoff wrote: > > > > Hmm, that was a misunderstanding, then: It was tagged by release managers as > > not-a-blocker, i.e. it doesn't hold back the release if not fixed, a fix > >

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wed, Feb 02, 2011 at 09:51:05PM +0100, Moritz Mühlenhoff wrote: > > Hmm, that was a misunderstanding, then: It was tagged by release managers as > not-a-blocker, i.e. it doesn't hold back the release if not fixed, a fix > through unstable would still have been possible. Any way, not it's too >

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Thu, Feb 03, 2011 at 06:33:04AM +1000, Andrew Pollock wrote: > On Wed, Feb 02, 2011 at 09:15:39PM +0100, Moritz Mühlenhoff wrote: > > > > Why was there no maintainer reaction since a week? No we need to prepare > > a DSA for this :-/ > > > > There was no maintainer reaction because I thought

Bug#611217: [pkg-dhcp-devel] Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wed, Feb 02, 2011 at 09:15:39PM +0100, Moritz Mühlenhoff wrote: > > Why was there no maintainer reaction since a week? No we need to prepare > a DSA for this :-/ > There was no maintainer reaction because I thought previous responses were that it was okay to deal with post-release. Is this no

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wed, Jan 26, 2011 at 03:24:19PM -0600, Raphael Geissert wrote: > Package: isc-dhcp-server > Version: 4.1.1-P1-15 > Severity: grave > Tags: security patch > > Hi Ari, > > Just as a public record, the following advisory (CVE-2011-0413[0]) has been > published by ISC[1]: > > > When the DHCPv6 s

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

On Wednesday 26 January 2011 15:24:19 Raphael Geissert wrote: > Hi Ari, Andrew, of course :) (Thanks to adsb for pointing it out) Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subje

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

user release.debian@packages.debian.org usertag 611217 + squeeze-can-defer tag 611217 + squeeze-ignore thanks On Wed, 2011-01-26 at 15:24 -0600, Raphael Geissert wrote: > > When the DHCPv6 server code processes a message for an address that was > > previously declined and internally tagged as

Bug#611217: CVE-2011-0413: crash after DHCPv6 decline message

Package: isc-dhcp-server Version: 4.1.1-P1-15 Severity: grave Tags: security patch Hi Ari, Just as a public record, the following advisory (CVE-2011-0413[0]) has been published by ISC[1]: > When the DHCPv6 server code processes a message for an address that was > previously declined and interna