[ubuntu/plucky-proposed] unbound 1.22.0-1ubuntu1 (Accepted)

Andreas Hasenack andreas at canonical.com
Wed Jan 29 13:06:16 UTC 2025 

unbound (1.22.0-1ubuntu1) plucky; urgency=medium

  * Merge with Debian unstable (LP: #2087526, LP: #2085302). Remaining changes:
    - Don't build with hiredis on i386.  hiredis and redis are not built
      on i386 and require bootstrapping due to circular
      build-dependencies; simpler to just disable this in the i386
      unbound server binary (that no one will ever use).
  * Dropped:
    - SECURITY UPDATE: null pointer dereference
      + debian/patches/CVE-2024-43167-1.patch: fix null pointer
        dereference issue in function ub_ctx_set_fwd of file
        libunbound/libunbound.c
      + debian/patches/CVE-2024-43167-2.patch: fix to print a parse
        error when config is read with no name for a forward-zone, stub-
        zone or view.
      + CVE-2024-43167
        [Fixed upstream]
    - SECURITY UPDATE: denial of service via large RRsets compression
      + debian/patches/CVE-2024-8508.patch: limit name compression
        calculations per packet to avoid CPU lockup in util/data/msgencode.c
      + CVE-2024-8508
        [Fixed upstream]

unbound (1.22.0-1) unstable; urgency=medium

  * new upstream release (1.22.0)

unbound (1.21.1-1) unstable; urgency=medium

  * new upstream release 1.21.1
    Closes: #1078647, CVE-2024-43167 (NULL ptr deref in ub_ctx_set_fwd)
    Closes: #1083282, CVE-2024-8508 (Unbounded name compression)

Date: Tue, 28 Jan 2025 18:44:57 -0300
Changed-By: Andreas Hasenack <andreas at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/unbound/1.22.0-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Tue, 28 Jan 2025 18:44:57 -0300
Source: unbound
Built-For-Profiles: noudeb
Architecture: source
Version: 1.22.0-1ubuntu1
Distribution: plucky
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Andreas Hasenack <andreas at canonical.com>
Closes: 1078647 1083282
Launchpad-Bugs-Fixed: 2085302 2087526
Changes:
 unbound (1.22.0-1ubuntu1) plucky; urgency=medium
 .
   * Merge with Debian unstable (LP: #2087526, LP: #2085302). Remaining changes:
     - Don't build with hiredis on i386.  hiredis and redis are not built
       on i386 and require bootstrapping due to circular
       build-dependencies; simpler to just disable this in the i386
       unbound server binary (that no one will ever use).
   * Dropped:
     - SECURITY UPDATE: null pointer dereference
       + debian/patches/CVE-2024-43167-1.patch: fix null pointer
         dereference issue in function ub_ctx_set_fwd of file
         libunbound/libunbound.c
       + debian/patches/CVE-2024-43167-2.patch: fix to print a parse
         error when config is read with no name for a forward-zone, stub-
         zone or view.
       + CVE-2024-43167
         [Fixed upstream]
     - SECURITY UPDATE: denial of service via large RRsets compression
       + debian/patches/CVE-2024-8508.patch: limit name compression
         calculations per packet to avoid CPU lockup in util/data/msgencode.c
       + CVE-2024-8508
         [Fixed upstream]
 .
 unbound (1.22.0-1) unstable; urgency=medium
 .
   * new upstream release (1.22.0)
 .
 unbound (1.21.1-1) unstable; urgency=medium
 .
   * new upstream release 1.21.1
     Closes: #1078647, CVE-2024-43167 (NULL ptr deref in ub_ctx_set_fwd)
     Closes: #1083282, CVE-2024-8508 (Unbounded name compression)
Checksums-Sha1:
 dd7270f602898af43dc7a161c9cac39239479a05 3037 unbound_1.22.0-1ubuntu1.dsc
 0dcb1b90126eb244aca1ce01c60da8aa62e0f314 6682466 unbound_1.22.0.orig.tar.gz
 e37b8af9ab4820cc6bb2704670ec0334abda3bee 29768 unbound_1.22.0-1ubuntu1.debian.tar.xz
 06b95e4e679954dd789e430db6c3ab566a6a5ba2 7949 unbound_1.22.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
 89286d9e3148cd3f1d76cd0374f6a6f47127304f174f05462b4c59b466ee569e 3037 unbound_1.22.0-1ubuntu1.dsc
 c5dd1bdef5d5685b2cedb749158dd152c52d44f65529a34ac15cd88d4b1b3d43 6682466 unbound_1.22.0.orig.tar.gz
 af6afdd1214c25dfbacefd5dcf88b65861f2effae0c818906904e2bb47a38977 29768 unbound_1.22.0-1ubuntu1.debian.tar.xz
 c6c1482b818143a99620a4b62eac81d0e0783369d7d46cd95d3b40799376badf 7949 unbound_1.22.0-1ubuntu1_source.buildinfo
Files:
 72bea32ba4b79e22d914430b8b1e0c03 3037 net optional unbound_1.22.0-1ubuntu1.dsc
 be0e5ae64c6619a638c116addd4da670 6682466 net optional unbound_1.22.0.orig.tar.gz
 c94100f521ffb7b82fcc64612e1e8c18 29768 net optional unbound_1.22.0-1ubuntu1.debian.tar.xz
 c563ea55f08923f0de64af8fbf002b7b 7949 net optional unbound_1.22.0-1ubuntu1_source.buildinfo
Original-Maintainer: unbound packagers <unbound at packages.debian.org>
Vcs-Git: https://git.launchpad.net/~ahasenack/ubuntu/+source/unbound
Vcs-Git-Commit: da4fc12ee1d5a7f04ef976cc3d0b36108272af48
Vcs-Git-Ref: refs/heads/plucky-unbound-merge-1

More information about the plucky-changes mailing list