[ubuntu/hardy-security] bind9 (delayed), bind9 1:9.4.2.dfsg.P2-2ubuntu0.6 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Dec 1 19:04:52 GMT 2010


bind9 (1:9.4.2.dfsg.P2-2ubuntu0.6) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service via ncache entry and a rrsig for the
    same type
    - lib/dns/rbtdb.c: properly mark existing RRSIG records as stale.
    - CVE-2010-3613
  * SECURITY UPDATE: answers incorrectly marked as insecure during key
    algorithm rollover
    - lib/dns/include/dns/types.h, lib/dns/validator.c: improve logic.
    - CVE-2010-3614

Date: Fri, 26 Nov 2010 09:41:20 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/bind9/1:9.4.2.dfsg.P2-2ubuntu0.6
-------------- next part --------------
Format: 1.7
Date: Fri, 26 Nov 2010 09:41:20 -0500
Source: bind9
Binary: bind9 bind9-doc bind9-host libbind-dev libbind9-30 libdns35 libdns36 libisc35 liblwres30 libisccc30 libisccfg30 dnsutils lwresd
Architecture: source
Version: 1:9.4.2.dfsg.P2-2ubuntu0.6
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 bind9      - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 dnsutils   - Clients provided with BIND
 libbind-dev - Static Libraries and Headers used by BIND
 libbind9-30 - BIND9 Shared Library used by BIND
 libdns35   - DNS Shared Library used by BIND
 libdns36   - DNS Shared Library used by BIND
 libisc35   - ISC Shared Library used by BIND
 libisccc30 - Command Channel Library used by BIND
 libisccfg30 - Config File Handling Library used by BIND
 liblwres30 - Lightweight Resolver Library used by BIND
 lwresd     - Lightweight Resolver Daemon
Changes: 
 bind9 (1:9.4.2.dfsg.P2-2ubuntu0.6) hardy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via ncache entry and a rrsig for the
     same type
     - lib/dns/rbtdb.c: properly mark existing RRSIG records as stale.
     - CVE-2010-3613
   * SECURITY UPDATE: answers incorrectly marked as insecure during key
     algorithm rollover
     - lib/dns/include/dns/types.h, lib/dns/validator.c: improve logic.
     - CVE-2010-3614
Files: 
 a2a54de1ea2a4666169e155b38c39482 1641 net optional bind9_9.4.2.dfsg.P2-2ubuntu0.6.dsc
 600c295cd4aab666db0bb385d915989f 236216 net optional bind9_9.4.2.dfsg.P2-2ubuntu0.6.diff.gz
Original-Maintainer: LaMont Jones <lamont at debian.org>


More information about the Hardy-changes mailing list