From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <bug-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp2 ([2001:41d0:2:4a6f::])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	by ms0.migadu.com with LMTPS
	id iCcBIjsbcmDqWAEAgWs5BA
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Sat, 10 Apr 2021 23:40:11 +0200
Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp2 with LMTPS
	id UdfMGzsbcmDDKgAAB5/wlQ
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Sat, 10 Apr 2021 21:40:11 +0000
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id C228D1DFF6
	for <larch@yhetil.org>; Sat, 10 Apr 2021 23:40:10 +0200 (CEST)
Received: from localhost ([::1]:57348 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <bug-guix-bounces+larch=yhetil.org@gnu.org>)
	id 1lVLKr-0007q8-Ca
	for larch@yhetil.org; Sat, 10 Apr 2021 17:40:09 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:46264)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1lVLKk-0007ph-CR
 for bug-guix@gnu.org; Sat, 10 Apr 2021 17:40:02 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:41925)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1lVLKk-0006U1-4m
 for bug-guix@gnu.org; Sat, 10 Apr 2021 17:40:02 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1lVLKk-0003vN-08
 for bug-guix@gnu.org; Sat, 10 Apr 2021 17:40:02 -0400
X-Loop: help-debbugs@gnu.org
Subject: bug#47674: dnsmasq is vulnerable to CVE-2021-3448
Resent-From: =?UTF-8?Q?Nicol=C3=B2?= Balzarotti <anothersms@gmail.com>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-guix@gnu.org
Resent-Date: Sat, 10 Apr 2021 21:40:01 +0000
Resent-Message-ID: <handler.47674.B47674.161809078815060@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 47674
X-GNU-PR-Package: guix
X-GNU-PR-Keywords: security
To: Leo Famulari <leo@famulari.name>
Received: via spool by 47674-submit@debbugs.gnu.org id=B47674.161809078815060
 (code B ref 47674); Sat, 10 Apr 2021 21:40:01 +0000
Received: (at 47674) by debbugs.gnu.org; 10 Apr 2021 21:39:48 +0000
Received: from localhost ([127.0.0.1]:53471 helo=debbugs.gnu.org)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
 id 1lVLKV-0003uq-Uy
 for submit@debbugs.gnu.org; Sat, 10 Apr 2021 17:39:48 -0400
Received: from mail-wm1-f51.google.com ([209.85.128.51]:47099)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <anothersms@gmail.com>) id 1lVLKT-0003uc-II
 for 47674@debbugs.gnu.org; Sat, 10 Apr 2021 17:39:46 -0400
Received: by mail-wm1-f51.google.com with SMTP id
 z24-20020a1cf4180000b029012463a9027fso4740504wma.5
 for <47674@debbugs.gnu.org>; Sat, 10 Apr 2021 14:39:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; 
 h=from:to:cc:subject:in-reply-to:references:date:message-id
 :mime-version:content-transfer-encoding;
 bh=W3ndo3pjtixN3EsOH55IKJeV56XEaQ4HHJ+uPdI3cHU=;
 b=T/Zk9IYausPSrGI/b58VfgZxY8YXfyDbIzOS+36J/bjWDZI1aGVgdaNmownra3U9vk
 tG87YTLRKFi0YSClGwgHuAPjTlTi3Le9e+QOk3VH4lOWFB8lW9JqMdmwPWaXihVUUZWY
 dOIEo2vBccHnT2AYhgnjpC8fA03et9btFmMP9Z/I0iMMi1j4HOZ0zsDBKvol39cXoYPH
 g8Z8RDSxV+sKwrc33bCAWBoq84yTEhRyQ6+IDsCBHia3zt65Ph/SnMQ+fSIHGU9c5wxR
 bJql92Hds+EUgVv3wZp96YvVrUiKmDWsgskZ1HgG1x5OpEVlXwaxD9aqXQYw27drLFAB
 wRhw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:in-reply-to:references:date
 :message-id:mime-version:content-transfer-encoding;
 bh=W3ndo3pjtixN3EsOH55IKJeV56XEaQ4HHJ+uPdI3cHU=;
 b=G/wuJJyiFUbDkpWzlghAkwn2GuMtE1/cCpXSSla/p7oL5dlq+/X4DuqAUCAads8OPH
 6PCKG4uq3wZLgaJJr11UgwycZbyGOddIDFt7163F9ywL36AtR6kGZdc8G1EjKjs0oXl7
 VykAnFp4mhr2Qw5Deaj0D4KdwGWkvyC+VKTEmx67ZDdLpJ/prB9WzqYPVph6Aanbg4/+
 NwKmSPlL/NfP7IeodyVSKDeOzHMe0feSFz5KkYsEGEXM+MqTo+9HRuEqcz4Qsr2/iFlc
 MwxQTmDpGPV0RnzxDAQ6oaT+xMFply+elBVV0qcfjPnrKhwvPPuEdmvGPWh4zHHxz8/c
 r8Cg==
X-Gm-Message-State: AOAM533L4Kb0oOfAUc5+G6lv1C7QOSLeX1SAAl6uaG9II7y+5yJBVbFk
 5t95wk7wMwjzZDPFPz/5k46eHs1g75U=
X-Google-Smtp-Source: ABdhPJz5ntNAh4+XdN9/NuRp80xuTJkWKJ3LIIFgkDPtMH2esiOY+qmu2/Yf+T/hrguFVhdvYxTM/g==
X-Received: by 2002:a05:600c:1992:: with SMTP id
 t18mr19136624wmq.125.1618090779681; 
 Sat, 10 Apr 2021 14:39:39 -0700 (PDT)
Received: from guixSD (host-79-17-142-89.retail.telecomitalia.it.
 [79.17.142.89])
 by smtp.gmail.com with ESMTPSA id w7sm11171577wru.74.2021.04.10.14.39.38
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Sat, 10 Apr 2021 14:39:39 -0700 (PDT)
From: =?UTF-8?Q?Nicol=C3=B2?= Balzarotti <anothersms@gmail.com>
In-Reply-To: <YHCz69IMc+4ESoa0@jasmine.lan>
References: <87pmz3mr2k.fsf@guixSD.i-did-not-set--mail-host-address--so-tickle-me>
 <YHCtHf4Pa4ER9N7j@jasmine.lan>
 <87h7kfme9q.fsf@guixSD.i-did-not-set--mail-host-address--so-tickle-me>
 <YHCz69IMc+4ESoa0@jasmine.lan>
Date: Sat, 10 Apr 2021 23:39:37 +0200
Message-ID: <87eefh3jl2.fsf@guixSD.i-did-not-set--mail-host-address--so-tickle-me>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-BeenThere: bug-guix@gnu.org
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Cc: 47674@debbugs.gnu.org
Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+larch=yhetil.org@gnu.org>
X-Migadu-Flow: FLOW_IN
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1618090810;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:resent-cc:
	 resent-from:resent-sender:resent-message-id:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=W3ndo3pjtixN3EsOH55IKJeV56XEaQ4HHJ+uPdI3cHU=;
	b=hUSZuybHt3InGEobrFeB6C5Kclewd3l5YyWV7MOcswFOraBqDnYxBGzE65xRD9g68AsqL9
	gFbfeYozvPEmExkq29oQR1iXdReYrJ8ja3we65bZLfKcygmR29dCQwHy+2PahHTsMIHfb5
	ye3oOBGRj4Bp1UHmSUk2iA2RGpWxaZxiRMHVHZ01rz8+Euwt6Vgla/AdRYspd+FfVZhq6Z
	zN8LLa9U6yMD7FrMmoWf/KNlBbSoN+xAbg/gpGHEQiLkuaQ7jbUO36r6c7w1acS0ZA4eJo
	iegj9vMXoo64Lsdh/j9zqRpXWgG3P2v64WFmQ46Ulyn+s1Hd5LSgJpinVwZvhA==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1618090810; a=rsa-sha256; cv=none;
	b=swdlRoA1VocZzSmr8kQIvvYBq+qH8+msXvxxED+eXzV8WCWVEW99tGN9FQcG1ctCUiO/qG
	ebL0qD2VqjFJjeedV7Bv6o19G8x/XV5FU7M4slSFxuq2+3OSmZMTaWPgWctvJ7YwBq5yK3
	h9HJsEbZ0L8BsSD5Bk4KjYVO18uDQ57ZAYwA9oSeYtVDcoQ/MFCoQIfu7Q6D6pd53xjIyl
	rMKhgs6WyyQmQD/zt+TsW3q7G6L/zhMyVQc4GgSsR3KRFJot5Lxce2hUavfg4zQCeR+z0u
	5Vstp9I2WxYrL/vn4aCT09CBLTwqKpSv+auBp0URUSrMtzI0Nr0lcwXAQJeQRw==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20161025 header.b="T/Zk9IYa";
	dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none);
	spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org
X-Migadu-Spam-Score: -1.34
Authentication-Results: aspmx1.migadu.com;
	dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20161025 header.b="T/Zk9IYa";
	dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none);
	spf=pass (aspmx1.migadu.com: domain of bug-guix-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=bug-guix-bounces@gnu.org
X-Migadu-Queue-Id: C228D1DFF6
X-Spam-Score: -1.34
X-Migadu-Scanner: scn0.migadu.com
X-TUID: KHMDIfhpyuna

Leo Famulari <leo@famulari.name> writes:

> On Fri, Apr 09, 2021 at 09:47:13PM +0200, Nicol=C3=B2 Balzarotti wrote:
>> Staging has an older version (5.8 vs 7.2, which has been released in
>> november 2019 [fn:1] though), and it got updated a few days ago
>> (28cc447fc5bd0a219ad54836a343826cc34d9bd7) if I'm not wrong, so it should
>> fail on staging too.  Am I wrong?
>
> Ah, could be. The new staging builds haven't been performed yet.
Failed both i686 and x86_64 on staging