[ubuntu/groovy-proposed] bind9 1:9.16.3-1ubuntu2 (Accepted)

Thu Jun 18 12:47:13 UTC 2020

bind9 (1:9.16.3-1ubuntu2) groovy; urgency=medium

  * SECURITY UPDATE: assertion when attempting to fill oversized TCP buffer
    - debian/patches/CVE-2020-8618.patch: add fix to lib/ns/client.c,
      lib/ns/include/ns/client.h, lib/ns/xfrout.c.
    - CVE-2020-8618
  * SECURITY UPDATE: INSIST failure when a zone with an interior wildcard
    label was queried in a certain pattern
    - debian/patches/CVE-2020-8619.patch: add fix to lib/dns/rbtdb.c.
    - CVE-2020-8619

Date: Thu, 18 Jun 2020 08:29:47 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/bind9/1:9.16.3-1ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 18 Jun 2020 08:29:47 -0400
Source: bind9
Architecture: source
Version: 1:9.16.3-1ubuntu2
Distribution: groovy
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 bind9 (1:9.16.3-1ubuntu2) groovy; urgency=medium
 .
   * SECURITY UPDATE: assertion when attempting to fill oversized TCP buffer
     - debian/patches/CVE-2020-8618.patch: add fix to lib/ns/client.c,
       lib/ns/include/ns/client.h, lib/ns/xfrout.c.
     - CVE-2020-8618
   * SECURITY UPDATE: INSIST failure when a zone with an interior wildcard
     label was queried in a certain pattern
     - debian/patches/CVE-2020-8619.patch: add fix to lib/dns/rbtdb.c.
     - CVE-2020-8619
Checksums-Sha1:
 5066ae91ce47a4603ca90a9c85e13223620a739e 2778 bind9_9.16.3-1ubuntu2.dsc
 4a74c7a450469ea244f796dc8565ad06b6afdbc8 72844 bind9_9.16.3-1ubuntu2.debian.tar.xz
 bea4dec5e2e5c6debab9f06c66e5c19da6dee44c 8499 bind9_9.16.3-1ubuntu2_source.buildinfo
Checksums-Sha256:
 b2a2263211758282b0b9a34b8ef59e2ea537c2ac590aa189eb6478dd428b778b 2778 bind9_9.16.3-1ubuntu2.dsc
 3415efb1cef44d70e63d7c22e37360de120ab9b52a7a8ff3be4281257c842dad 72844 bind9_9.16.3-1ubuntu2.debian.tar.xz
 447f2a48970fc2d6a804bb5eef7aa7cbb7292f8d2625ba6a3424731ff3c91f01 8499 bind9_9.16.3-1ubuntu2_source.buildinfo
Files:
 f607bdccbcbf21212577c6ff9936b3e5 2778 net optional bind9_9.16.3-1ubuntu2.dsc
 159575dce751b9c028520d771f837626 72844 net optional bind9_9.16.3-1ubuntu2.debian.tar.xz
 1772e219e87dcc96114a267851de7666 8499 net optional bind9_9.16.3-1ubuntu2_source.buildinfo
Original-Maintainer: Debian DNS Team <team+dns at tracker.debian.org>

-----BEGIN PGP SIGNATURE-----
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=0gHu
-----END PGP SIGNATURE-----