[ubuntu/dapper-security] bind9 (delayed), bind9 1:9.3.2-2ubuntu1.12 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Dec 1 19:05:17 GMT 2010


bind9 (1:9.3.2-2ubuntu1.12) dapper-security; urgency=low

  * SECURITY UPDATE: denial of service via ncache entry and a rrsig for the
    same type
    - lib/dns/rbtdb.c: properly mark existing RRSIG records as stale. Also
      required backport of change #1997.
    - CVE-2010-3613
  * SECURITY UPDATE: answers incorrectly marked as insecure during key
    algorithm rollover
    - lib/dns/include/dns/types.h, lib/dns/validator.c: improve logic.
    - CVE-2010-3614

Date: Fri, 26 Nov 2010 12:54:23 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: LaMont Jones <lamont at debian.org>
https://launchpad.net/ubuntu/dapper/+source/bind9/1:9.3.2-2ubuntu1.12
-------------- next part --------------
Format: 1.7
Date: Fri, 26 Nov 2010 12:54:23 -0500
Source: bind9
Binary: libisccc0 lwresd libbind9-0 bind9-doc dnsutils bind9 libbind-dev bind9-host liblwres9 libdns23 libisc11 libisccfg1 libdns21
Architecture: source
Version: 1:9.3.2-2ubuntu1.12
Distribution: dapper-security
Urgency: low
Maintainer: LaMont Jones <lamont at debian.org>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 bind9      - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 dnsutils   - Clients provided with BIND
 libbind-dev - Static Libraries and Headers used by BIND
 libbind9-0 - BIND9 Shared Library used by BIND
 libdns21   - DNS Shared Library used by BIND
 libdns23   - DNS Shared Library used by BIND
 libisc11   - ISC Shared Library used by BIND
 libisccc0  - Command Channel Library used by BIND
 libisccfg1 - Config File Handling Library used by BIND
 liblwres9  - Lightweight Resolver Library used by BIND
 lwresd     - Lightweight Resolver Daemon
Changes: 
 bind9 (1:9.3.2-2ubuntu1.12) dapper-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via ncache entry and a rrsig for the
     same type
     - lib/dns/rbtdb.c: properly mark existing RRSIG records as stale. Also
       required backport of change #1997.
     - CVE-2010-3613
   * SECURITY UPDATE: answers incorrectly marked as insecure during key
     algorithm rollover
     - lib/dns/include/dns/types.h, lib/dns/validator.c: improve logic.
     - CVE-2010-3614
Files: 
 91818d0547f21cb82a4027f9f3bd04a3 1426 net optional bind9_9.3.2-2ubuntu1.12.dsc
 1465f8fc6971d7405c3a6f0599f4f1c8 110912 net optional bind9_9.3.2-2ubuntu1.12.diff.gz


More information about the dapper-changes mailing list