Copied from
debian sid in
Primary Archive for Debian GNU/Linux
Changelog
hesiod (3.2.1-3.1) unstable; urgency=medium
* Non-maintainer upload.
* CVE-2016-10151: Use secure_getenv() when it's available.
Factor out logic that attempts to only consult the environment when it's
safe to do so into its own function, and use secure_getenv() instead of
getenv() if it's available. Closes: #852094
* CVE-2016-10152: Remove hard-coded defaults for LHS and RHS.
Don't fall back to using a default LHS or RHS when the configuration
file can't be read. Instead, return an error. Closes: #852093
-- Dr. Tobias Quathamer <email address hidden> Wed, 13 Feb 2019 21:31:25 +0100