Bug 1052708
Summary: | CVE-2014-0591 bind: named crash when handling malformed NSEC3-signed zones [fedora-all] | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Vincent Danen <vdanen> |
Component: | bind | Assignee: | Tomáš Hozza <thozza> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 20 | CC: | jorti, ncjeffgus, psimerda, thozza, vonsch |
Target Milestone: | --- | Keywords: | Security, SecurityTracking |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Release Note | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-01-20 11:03:26 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1051717 |
Description
Vincent Danen
2014-01-13 22:09:42 UTC
Please use the following update submission link to create the Bodhi request for this issue as it contains the top-level parent bug(s) as well as this tracking bug. This will ensure that all associated bugs get updated when new packages are pushed to stable. Please also ensure that the "Close bugs when update is stable" option remains checked. Bodhi update submission link: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=1051717,1052708 *** Bug 1038319 has been marked as a duplicate of this bug. *** Just a small note, I find it strange that in the bug description, there is stated that: "Please note: this issue affects multiple supported versions of Fedora. Only one tracking bug has been filed; please ensure that it is only closed when all affected versions are fixed." But in the comment #1 (In reply to Vincent Danen from comment #1) > ... > Please also ensure that the "Close bugs when update is stable" option > remains checked. > ... If I keep the option checked in the update, then the first update pushed to stable would cause this bug to be closed, which is not OK based on the sentence in the description. I think you should review the text used in security tracker bugs... bind-9.9.3-8.P2.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/bind-9.9.3-8.P2.fc18 bind-9.9.3-14.P2.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/bind-9.9.3-14.P2.fc19 bind-9.9.4-11.P2.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/bind-9.9.4-11.P2.fc20 (In reply to Tomas Hozza from comment #3) > Just a small note, I find it strange that in the bug description, there is > stated > that: > > "Please note: this issue affects multiple supported versions of Fedora. > Only one tracking bug has been filed; please ensure that it is only closed > when all affected versions are fixed." > > > But in the comment #1 > > (In reply to Vincent Danen from comment #1) > > ... > > Please also ensure that the "Close bugs when update is stable" option > > remains checked. > > ... > > If I keep the option checked in the update, then the first update pushed to > stable would cause this bug to be closed, which is not OK based on the > sentence > in the description. I think you should review the text used in security > tracker > bugs... Suggestions are welcome, but considering we have a hard time getting people to care about these one way or the other I have my doubts that "Don't check the box and remember to come back here to close it after they're all pushed to stable" is going to work too well. Not saying the text couldn't be improved, but the advantage here is that at least the bug gets closed. Without it, it would stay open forever or until the old-bug-killer comes trolling through open bugs for this release, which isn't really ideal either. bind-9.9.3-14.P2.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. bind-9.9.4-11.P2.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report. All stable branches are updated |