[ubuntu/hardy-security] bind9 (delayed), bind9 1:9.4.2.dfsg.P2-2ubuntu0.7 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon May 30 14:04:21 UTC 2011 

bind9 (1:9.4.2.dfsg.P2-2ubuntu0.7) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service via multiple trust anchors for a
    single zone
    - lib/dns/validator.c: fix arguments to dns_keytable_findnextkeynode().
    - Upstream change 2869.
    - CVE-2010-3762
  * SECURITY UPDATE: denial of service via off-by-one
    - lib/dns/ncache.c: correctly validate length.
    - Patch backported from 9.4-ESV-R4-P1.
    - CVE-2011-1910
  * Added tests for previous security update to test suite and backport
    DNS_DBFIND_ADDITIONALOK so they work.

Date: Fri, 27 May 2011 13:26:22 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/bind9/1:9.4.2.dfsg.P2-2ubuntu0.7
-------------- next part --------------
Format: 1.7
Date: Fri, 27 May 2011 13:26:22 -0400
Source: bind9
Binary: bind9 bind9-doc bind9-host libbind-dev libbind9-30 libdns35 libdns36 libisc35 liblwres30 libisccc30 libisccfg30 dnsutils lwresd
Architecture: source
Version: 1:9.4.2.dfsg.P2-2ubuntu0.7
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 bind9      - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 dnsutils   - Clients provided with BIND
 libbind-dev - Static Libraries and Headers used by BIND
 libbind9-30 - BIND9 Shared Library used by BIND
 libdns35   - DNS Shared Library used by BIND
 libdns36   - DNS Shared Library used by BIND
 libisc35   - ISC Shared Library used by BIND
 libisccc30 - Command Channel Library used by BIND
 libisccfg30 - Config File Handling Library used by BIND
 liblwres30 - Lightweight Resolver Library used by BIND
 lwresd     - Lightweight Resolver Daemon
Changes: 
 bind9 (1:9.4.2.dfsg.P2-2ubuntu0.7) hardy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via multiple trust anchors for a
     single zone
     - lib/dns/validator.c: fix arguments to dns_keytable_findnextkeynode().
     - Upstream change 2869.
     - CVE-2010-3762
   * SECURITY UPDATE: denial of service via off-by-one
     - lib/dns/ncache.c: correctly validate length.
     - Patch backported from 9.4-ESV-R4-P1.
     - CVE-2011-1910
   * Added tests for previous security update to test suite and backport
     DNS_DBFIND_ADDITIONALOK so they work.
Files: 
 9c83ec8435181bb18c3f1aab6e445a3c 1636 net optional bind9_9.4.2.dfsg.P2-2ubuntu0.7.dsc
 85e0471e329f3143d3f5c7a3f83e21aa 240487 net optional bind9_9.4.2.dfsg.P2-2ubuntu0.7.diff.gz
Original-Maintainer: LaMont Jones <lamont at debian.org>

More information about the Hardy-changes mailing list