Accepted bind9 1:9.3.2-2ubuntu2 (source)
Martin Pitt
martin.pitt at ubuntu.com
Thu Sep 7 15:45:12 BST 2006
Accepted:
OK: bind9_9.3.2-2ubuntu2.dsc
-> Component: main Section: net
OK: bind9_9.3.2-2ubuntu2.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 7 Sep 2006 16:30:29 +0200
Source: bind9
Binary: libisccc0 lwresd libbind9-0 bind9-doc dnsutils bind9 libbind-dev bind9-host liblwres9 libisc11 libisccfg1 libdns21
Architecture: source
Version: 1:9.3.2-2ubuntu2
Distribution: edgy
Urgency: low
Maintainer: LaMont Jones <lamont at debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description:
bind9 - Internet Domain Name Server
bind9-doc - Documentation for BIND
bind9-host - Version of 'host' bundled with BIND 9.X
dnsutils - Clients provided with BIND
libbind-dev - Static Libraries and Headers used by BIND
libbind9-0 - BIND9 Shared Library used by BIND
libdns21 - DNS Shared Library used by BIND
libisc11 - ISC Shared Library used by BIND
libisccc0 - Command Channel Library used by BIND
libisccfg1 - Config File Handling Library used by BIND
liblwres9 - Lightweight Resolver Library used by BIND
lwresd - Lightweight Resolver Daemon
Changes:
bind9 (1:9.3.2-2ubuntu2) edgy; urgency=low
.
* SECURITY UPDATE:
* bin/named/query.c, lib/dns/resolver.c: Apply upstream patch from 9.3.2-P1
to fix the following flaws:
- A remote user (DNS server) can send specially crafted RRset responses in
return to a recursive SIG query to cause the requesting named service to
crash [CVE-2006-4095].
- A remote user can also send specially crafted queries to trigger an
INSIST failure and cause the requesting service(s) to crash
[CVE-2006-4096].
Files:
d247b49877e020781392d1acf6632b8c 761 net optional bind9_9.3.2-2ubuntu2.dsc
952428cce64bba0b46e43321652b22d5 88083 net optional bind9_9.3.2-2ubuntu2.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFFAC0xDecnbV4Fd/IRAvsoAKDs8jCtz/BuhaGAXrMiUbwK6Yz5CQCfSEVL
k0IXBePZT0Bltte4ZCnnBXs=
=AhO0
-----END PGP SIGNATURE-----
More information about the edgy-changes
mailing list