Fwd: A couple old CVE bugs and a request for better tools

[C Peters]

Call me impatient if you like...  I sent the following to
https://launchpad.net/~motu-swat/ or
https://launchpad.net/~motu-swat/+contactuser and haven't heard back yet.


---------- Forwarded message ----------
From: C Peters <chuck.peters at gmail.com>
Date: Tue, Nov 11, 2014 at 4:25 AM
Subject: A couple old CVE bugs and a request for better tools
To: C Peters <chuck.peters at gmail.com>



http://people.canonical.com/~ubuntu-security/cve/pkg/pdns.html shows two
CVE issues for pdns. However they are different source packages and they
are mostly fixed.  Could you fix that in the tracker?

CVE-2012-0206  Source package pdns  LP# 918588
CVE-2012-1193  Source package pdns-recursor  LP# 1391409  Ubuntu 12.04 has
an issue, others are fixed.

Can one of your team fix the LP# 1391409 in 12.04, or do we all have other
priorities?

They are universe packages, so I hope I am sending the message to the right
place.  Should I be emailing some other teams?

I run bind9 now, but plan to impliment DNSSEC using powerdns as a hidden
master and nsd for the authoritative servers.  Given they are universe
packages and Canonical isn't supporting them I want some tools to notify me
of current CVE issues on the packages installed on the systems.  Do you
have any recommendations?


Thanks,
Chuck
804-577-8001
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-motu/attachments/20141111/29bbedf4/attachment.html>