please backport pdns-recursor 3.3-2 from Precise
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Hardy Backports |
Fix Released
|
Wishlist
|
Unassigned | ||
Lucid Backports |
Fix Released
|
Wishlist
|
Unassigned | ||
Natty Backports |
Fix Released
|
Wishlist
|
Unassigned | ||
Oneiric Backports |
Fix Released
|
Wishlist
|
Unassigned | ||
maverick-backports |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
There is pdns-recursor 3.1.4-6ubuntu1 in Hardy, which has a major security issue (see bug #502987). This bug was fixed in pdns-recursor 3.1.7 and above for every Ubuntu release except Hardy, because it would be too much of a hassle to rewrite the code. Because of this, pdns-recursor will not be included in hardy-security (see comments 19 and 20 of above bug).
I thought at least it could be included in hardy-backports for whoever wants to upgrade. pdns-recursor 3.3 has a LOT of changes and improvements (beside this security fix) since version 3.1, so it would be a benefit to backport it to Hardy (and possibly Lucid for which I'll open a separate bugreport).
I've managed to build it locally with pbuilder and in my PPA (https:/
I've build 3.3-1 from Oneiric two months ago, using it since on my Hardy server without problems.
visibility: | private → public |
Changed in hardy-backports: | |
status: | Incomplete → Confirmed |
If this issue was fixed in 3.1.7, would it be acceptable to backport Lucid's pdns-recursor (3.1.7.2-1) to Hardy instead?
In order to ensure that upgrades work after you're installed a backport, we require backports to go to all intermediate releases, so a backport from Precise to Hardy would also require backports to Lucid, Maverick, Natty, and Oneiric, and all of those would require testing as well.
pdns-recursor 3.1.7.2-1 also hadn't been updated to use debhelper 8 or source format 3.0, so it should be backportable with no source changes.
If you're still interested in backporting 3.3-2, that's fine, but please also test the backports to Lucid, Maverick, Natty, and Oneiric. There is a tool in the ubuntu-dev-tools package, backportpackage, that can help with this testing.