[ubuntu/hardy-security] quagga_0.99.9-2ubuntu1.5_sparc_translations.tar.gz (delayed), quagga_0.99.9-2ubuntu1.5_i386_translations.tar.gz, quagga_0.99.9-2ubuntu1.5_powerpc_translations.tar.gz, quagga, quagga_0.99.9-2ubuntu1.5_lpia_translations.tar.gz, quagga_0.99.9-2ubuntu1.5_hppa_translations.tar.gz, quagga_0.99.9-2ubuntu1.5_amd64_translations.tar.gz, quagga_0.99.9-2ubuntu1.5_ia64_translations.tar.gz 0.99.9-2ubuntu1.5 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Mar 29 17:06:20 UTC 2011 

quagga (0.99.9-2ubuntu1.5) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service via malformed extended communities
    - debian/patches/99_quagga-extcom.dpatch: ignore malformed extended
      communities in bgpd/bgp_attr.c.
    - CVE-2010-1674
  * SECURITY UPDATE: denial of service via AS_PATHLIMIT
    - debian/patches/99_no-aspathlimit.dpatch: remove AS_PATHLIMIT support
      in bgpd/bgp_attr.c.
    - CVE-2010-1675

Date: Wed, 23 Mar 2011 14:44:40 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/quagga/0.99.9-2ubuntu1.5
-------------- next part --------------
Format: 1.7
Date: Wed, 23 Mar 2011 14:44:40 -0400
Source: quagga
Binary: quagga quagga-doc
Architecture: source
Version: 0.99.9-2ubuntu1.5
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-doc - documentation files for quagga
Changes: 
 quagga (0.99.9-2ubuntu1.5) hardy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via malformed extended communities
     - debian/patches/99_quagga-extcom.dpatch: ignore malformed extended
       communities in bgpd/bgp_attr.c.
     - CVE-2010-1674
   * SECURITY UPDATE: denial of service via AS_PATHLIMIT
     - debian/patches/99_no-aspathlimit.dpatch: remove AS_PATHLIMIT support
       in bgpd/bgp_attr.c.
     - CVE-2010-1675
Files: 
 80f65b3b497f46ec444fa32c2162bbc4 1620 net optional quagga_0.99.9-2ubuntu1.5.dsc
 3c6096477f97056af0838c3408b04f35 39262 net optional quagga_0.99.9-2ubuntu1.5.diff.gz
Original-Maintainer: Christian Hammers <ch at debian.org>

More information about the Hardy-changes mailing list