Debian Package Tracker

general

source: bind9 (main)
version: 1:9.11.5.P4+dfsg-5.1
maintainer: Debian DNS Team (DMD)
uploaders: LaMont Jones [DMD] – Robie Basak [DMD] – Michael Gilbert [DMD] – Ondřej Surý [DMD] – Bernhard Schmidt [DMD]
arch: all any
std-ver: 4.1.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1:9.9.5.dfsg-9+deb8u15
o-o-sec: 1:9.9.5.dfsg-9+deb8u18
oldstable: 1:9.10.3.dfsg.P4-12.3+deb9u5
old-sec: 1:9.10.3.dfsg.P4-12.3+deb9u5
old-bpo: 1:9.11.5.P4+dfsg-5~bpo9+1
stable: 1:9.11.5.P4+dfsg-5.1
testing: 1:9.11.5.P4+dfsg-5.1
unstable: 1:9.11.5.P4+dfsg-5.1
NEW/experimental: 1:9.15.5-1

versioned links

1:9.9.5.dfsg-9+deb8u15: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:9.9.5.dfsg-9+deb8u18: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:9.10.3.dfsg.P4-12.3+deb9u5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:9.11.5.P4+dfsg-5~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:9.11.5.P4+dfsg-5.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

bind9 (25 bugs: 0, 20, 5, 0)
bind9-doc (1 bugs: 0, 0, 1, 0)
bind9-host (1 bugs: 0, 0, 1, 0)
bind9utils (2 bugs: 0, 2, 0, 0)
dnsutils (1 bugs: 0, 1, 0, 0)
libbind-dev
libbind-export-dev (1 bugs: 0, 1, 0, 0)
libbind9-161
libdns-export1104
libdns-export1104-udeb
libdns1104
libirs-export161
libirs-export161-udeb
libirs161
libisc-export1100
libisc-export1100-udeb
libisc1100
libisccc-export161
libisccc-export161-udeb
libisccc161
libisccfg-export163
libisccfg-export163-udeb
libisccfg163
liblwres161

action needed

A new upstream version is available: 9.11.13 high

A new upstream version 9.11.13 is available, you should consider packaging it.

Created: 2019-07-19 Last update: 2019-12-05 20:47

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2019-6477: With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to handle. When a TCP connection with a large number of pipelined queries is closed, the load on the server releasing these multiple resources can cause it to become unresponsive, even for queries that can be answered authoritatively or from cache. (This is most likely to be perceived as an intermittent server problem).

Please fix it.

Created: 2019-11-20 Last update: 2019-12-02 10:00

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2019-6477: With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to handle. When a TCP connection with a large number of pipelined queries is closed, the load on the server releasing these multiple resources can cause it to become unresponsive, even for queries that can be answered authoritatively or from cache. (This is most likely to be perceived as an intermittent server problem).

Please fix it.

Created: 2019-11-20 Last update: 2019-12-02 10:00

11 bugs tagged patch in the BTS normal

The BTS contains patches fixing 11 bugs (13 if counting merged bugs), consider including or untagging them.

Created: 2019-04-01 Last update: 2019-12-05 21:30

Multiarch hinter reports 4 issue(s) normal

There are issues with the multiarch metadata for this package.

bind9-doc could be marked Multi-Arch: foreign
libdns-export1104 could be marked Multi-Arch: same
libirs-export161 could be marked Multi-Arch: same
libisccfg-export163 could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2019-12-05 21:00

Depends on packages which need a new maintainer normal

The packages that bind9 depends on which need a new maintainer are:

dh-exec (#851746)
- Build-Depends: dh-exec

Created: 2019-11-22 Last update: 2019-12-05 20:58

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 1:9.11.13+dfsg-1, distribution unstable) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit f74d4ece3fc94b56977b0f662f79e694a4e09504
Author: Ondřej Surý <ondrej@debian.org>
Date:   Wed Nov 20 21:15:14 2019 +0100

    Update changelog for 1:9.11.13+dfsg-1 release

commit 404ae8e856483a3d09e2236450b20a97adc4edd7
Author: Ondřej Surý <ondrej@debian.org>
Date:   Wed Nov 20 21:19:58 2019 +0100

    Bump the libisc soversion from 1100 to 1104

commit ede8403c0781cd2815a7749778d38b2138d01809
Author: Ondřej Surý <ondrej@debian.org>
Date:   Wed Nov 20 21:15:56 2019 +0100

    Refresh patches for BIND 9.11.13
    
    Gbp-Dch: ignore

commit 39184e5c68d157c8f6d6e3930521e026e829d120
Merge: 0705fb219 8ac20afa1
Author: Ondřej Surý <ondrej@debian.org>
Date:   Wed Nov 20 21:13:46 2019 +0100

    Update upstream source from tag 'upstream/9.11.13+dfsg'
    
    Update to upstream version '9.11.13+dfsg'
    with Debian dir d3f880cdde39f0032be9749621792d0a4cbee2d8

commit 8ac20afa1874648a4e9347fb2cd116c95a57fa97
Author: Ondřej Surý <ondrej@debian.org>
Date:   Wed Nov 20 21:13:37 2019 +0100

    New upstream version 9.11.13+dfsg

commit 0705fb219756f34c0fe83c8eaba4d5d2b38e7d50
Author: Ondřej Surý <ondrej@debian.org>
Date:   Thu Oct 17 08:24:12 2019 +0200

    Update changelog for 1:9.11.12+dfsg-1 release

commit 2e4f82b40dc52e8f36781cc447d2c30433017498
Author: Ondřej Surý <ondrej@debian.org>
Date:   Thu Oct 17 08:23:36 2019 +0200

    Rebase patches
    
    Gbp-Dch: ignore

commit a3ae05409d9cab262366c86c0b18bea774257933
Merge: bb3f7a1e7 5ce9ac962
Author: Ondřej Surý <ondrej@debian.org>
Date:   Thu Oct 17 08:23:21 2019 +0200

    Update upstream source from tag 'upstream/9.11.12+dfsg'
    
    Update to upstream version '9.11.12+dfsg'
    with Debian dir 11a96f6ccebb710c43a1d4bf7835413fba98122d

commit 5ce9ac9629cf47c72ee540e2810c20e77204bd16
Author: Ondřej Surý <ondrej@debian.org>
Date:   Thu Oct 17 08:23:12 2019 +0200

    New upstream version 9.11.12+dfsg

commit bb3f7a1e7ebd2015c78eafc3285d8601e3bb4f46
Author: Ondřej Surý <ondrej@debian.org>
Date:   Mon Sep 30 12:12:49 2019 +0200

    Remove 4-clause BSD content from the package

commit b50c54b5563aae59b583f4b85ffcd395f83cd1bf
Author: Ondřej Surý <ondrej@debian.org>
Date:   Mon Sep 30 12:11:30 2019 +0200

    Remove debian/nslookup.1

commit e0709fb5743355db2582f0c7c2c3bc51dd9e9bee
Author: Ondřej Surý <ondrej@debian.org>
Date:   Mon Sep 30 12:10:29 2019 +0200

    Install python files to dist-packages (Courtesy of Jim Popovitch)

commit e6e079c0fa9689aff6eb373ddd997adf3e22e849
Author: Ondřej Surý <ondrej@debian.org>
Date:   Mon Sep 23 12:12:10 2019 +0200

    Remove GPL licensed apport file until one with better license is available

Created: 2019-03-01 Last update: 2019-12-05 06:17

lintian reports 34 warnings normal

Lintian reports 34 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2019-08-12 Last update: 2019-08-12 06:05

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2019-6477: With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to handle. When a TCP connection with a large number of pipelined queries is closed, the load on the server releasing these multiple resources can cause it to become unresponsive, even for queries that can be answered authoritatively or from cache. (This is most likely to be perceived as an intermittent server problem).

Please fix it.

Created: 2019-11-20 Last update: 2019-12-02 10:00

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2019-6477: With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to handle. When a TCP connection with a large number of pipelined queries is closed, the load on the server releasing these multiple resources can cause it to become unresponsive, even for queries that can be answered authoritatively or from cache. (This is most likely to be perceived as an intermittent server problem).
CVE-2018-5740: "deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. Affects BIND 9.7.0->9.8.8, 9.9.0->9.9.13, 9.10.0->9.10.8, 9.11.0->9.11.4, 9.12.0->9.12.2, 9.13.0->9.13.2.

Please fix them.

Created: 2018-08-09 Last update: 2019-12-02 10:00

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-12-04 Last update: 2017-12-04 07:49

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 4.1.2).

Created: 2017-12-31 Last update: 2019-09-29 23:40

news

[rss feed]

[2019-07-21] Accepted bind9 1:9.9.5.dfsg-9+deb8u18 (source all amd64) into oldoldstable (Thorsten Alteholz)
[2019-06-23] bind9 1:9.11.5.P4+dfsg-5.1 MIGRATED to testing (Debian testing watch)
[2019-06-21] Accepted bind9 1:9.11.5.P4+dfsg-5.1 (source) into unstable (Salvatore Bonaccorso)
[2019-05-19] Accepted bind9 1:9.11.5.P4+dfsg-5~bpo9+1 (source) into stretch-backports->backports-policy, stretch-backports (Bernhard Schmidt)
[2019-05-13] Accepted bind9 1:9.10.3.dfsg.P4-12.3+deb9u5 (source) into proposed-updates->stable-new, proposed-updates (Bernhard Schmidt)
[2019-05-09] Accepted bind9 1:9.10.3.dfsg.P4-12.3+deb9u5 (source) into stable->embargoed, stable (Bernhard Schmidt)
[2019-05-06] bind9 1:9.11.5.P4+dfsg-5 MIGRATED to testing (Debian testing watch)
[2019-05-03] Accepted bind9 1:9.11.5.P4+dfsg-5 (source) into unstable (Bernhard Schmidt)
[2019-04-26] Accepted bind9 1:9.11.5.P4+dfsg-4 (source) into unstable (Ondřej Surý)
[2019-04-25] bind9 1:9.11.5.P4+dfsg-3 MIGRATED to testing (Debian testing watch)
[2019-04-22] Accepted bind9 1:9.11.5.P4+dfsg-3 (source) into unstable (Bernhard Schmidt)
[2019-04-02] Accepted bind9 1:9.11.5.P4+dfsg-2 (source) into unstable (Bernhard Schmidt)
[2019-03-04] bind9 1:9.11.5.P4+dfsg-1 MIGRATED to testing (Debian testing watch)
[2019-02-28] Accepted bind9 1:9.9.5.dfsg-9+deb8u17 (source all amd64) into oldstable (Thorsten Alteholz)
[2019-02-26] Accepted bind9 1:9.11.5.P4+dfsg-1~bpo9+1 (source) into stretch-backports (Bernhard Schmidt)
[2019-02-22] Accepted bind9 1:9.11.5.P4+dfsg-1 (source) into unstable (Bernhard Schmidt)
[2019-02-22] bind9 1:9.11.5.P1+dfsg-2 MIGRATED to testing (Debian testing watch)
[2019-02-12] Accepted bind9 1:9.11.5.P1+dfsg-2 (source) into unstable (Bernhard Schmidt)
[2019-01-11] Accepted bind9 1:9.11.5.P1+dfsg-1~bpo9+1 (source amd64 all) into stretch-backports, stretch-backports (Bernhard Schmidt)
[2018-12-21] bind9 1:9.11.5.P1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-12-18] Accepted bind9 1:9.11.5.P1+dfsg-1 (source) into unstable (Ondřej Surý)
[2018-10-28] bind9 1:9.11.5+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-10-24] Accepted bind9 1:9.11.5+dfsg-1 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2018-09-28] Accepted bind9 1:9.11.4.P2+dfsg-3~bpo9+1 (source) into stretch-backports (Bernhard Schmidt)
[2018-09-28] bind9 1:9.11.4.P2+dfsg-3 MIGRATED to testing (Debian testing watch)
[2018-09-26] Accepted bind9 1:9.11.4.P2+dfsg-3 (source) into unstable (Bernhard Schmidt)
[2018-09-24] Accepted bind9 1:9.11.4.P2+dfsg-2 (source) into unstable (Bernhard Schmidt)
[2018-09-10] Accepted bind9 1:9.11.4.P2+dfsg-1 (source) into unstable (Ondřej Surý)
[2018-08-31] Accepted bind9 1:9.11.4.P1+dfsg-1 (source) into unstable (Ondřej Surý)
[2018-08-30] Accepted bind9 1:9.9.5.dfsg-9+deb8u16 (source all amd64) into oldstable (Thorsten Alteholz)

bugs [bug history graph]

all: 33 36
RC: 1
I&N: 26 28
M&W: 6 7
F&P: 0
patch: 11 13

links

homepage
lintian (0, 34)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:9.11.5.P4+dfsg-5.1ubuntu4
68 bugs (4 patches)
patches for 1:9.11.5.P4+dfsg-5.1ubuntu4