[arch-dev-public] [signoff] dnsutils/bind
Jan de Groot
jan at jgc.homeip.net
Fri Jul 25 09:53:40 EDT 2008
On Fri, 2008-07-25 at 09:34 -0400, Dale Blount wrote:
> On Fri, 2008-07-25 at 11:52 +0300, Roman Kyrylych wrote:
> > 2008/7/22 Aaron Griffin <aaronmgriffin at gmail.com>:
> > > On Mon, Jul 21, 2008 at 9:32 PM, K. Piche <kpiche at rogers.com> wrote:
> > >> Sorry about the multiple pkgrels for i686. When Paul said libcap was
> > >> missing I didn't realize it was never used in earlier releases.
> > >>
> > >> I still haven't seen any concrete signoffs - just a conditional one from
> > >> Paul for i686. I'll migrate the packages in a few days regardless.
> > >
> > > Ping, now that this vulnerability is in the wild, can we try and get
> > > some signoffs ASAP.
> > It has been signed off by Paul.
> > And now there is exploint in the wild!
> > So please move it out of testing ASAP.
> I'll add a i686 signoff, but it looks like we still need a x86_64 signoff.
> Anyone who can test, please hurry. This exploit is getting more dangerous by the minute.
Dig works fine on x86_64, so signoff for that. I'm not using bind
itself, so I can't test. Though we don't have enough signoffs for
x86_64, please move this thing quickly, either with or without signoffs.
If x86_64 would be broken, we would have bugreports for that already.
More information about the arch-dev-public