Upstream here. After some effort, and help from Moritz Muehlenhoff and Kai Hendry, the fix for the security issue in question was backported to MaraDNS 1.2.12.04 a while ago. There seems to be some Debian policy somewhere that states that, once cristened stable, a given version of a software package will only be updated if the updates are security-critical.
The relevant bug is Debian bug #425753. And, yes, as per that bug, I would prefer that Debian would update to 1.2.12.06 (or, better yet, 1.2.12.07), but Debian policy is Debian policy. - Sam -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
