[ubuntu/karmic-security] quagga_0.99.13-1ubuntu0.1_i386_translations.tar.gz, quagga_0.99.13-1ubuntu0.1_powerpc_translations.tar.gz, quagga, quagga_0.99.13-1ubuntu0.1_sparc_translations.tar.gz (delayed), quagga_0.99.13-1ubuntu0.1_armel_translations.tar.gz, quagga_0.99.13-1ubuntu0.1_amd64_translations.tar.gz, quagga_0.99.13-1ubuntu0.1_lpia_translations.tar.gz, quagga_0.99.13-1ubuntu0.1_ia64_translations.tar.gz 0.99.13-1ubuntu0.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Dec 7 19:04:44 GMT 2010


quagga (0.99.13-1ubuntu0.1) karmic-security; urgency=low

  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via malformed Outbound Route Filtering (ORF) record
    - debian/patches/91_CVE-2010-2948.dpatch: improve bounds checking in
      bgpd/bgp_packet.c.
    - CVE-2010-2948
  * SECURITY UPDATE: denial of service via unknown AS type
    - debian/patches/91_CVE-2010-2949.dpatch: check segment types and
      lengths in bgpd/bgp_aspath.*, bgpd/bgp_attr.c, tests/aspath_test.c.
    - CVE-2010-2949

Date: Thu, 11 Nov 2010 14:33:02 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/quagga/0.99.13-1ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Thu, 11 Nov 2010 14:33:02 -0500
Source: quagga
Binary: quagga quagga-doc
Architecture: source
Version: 0.99.13-1ubuntu0.1
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-doc - documentation files for quagga
Changes: 
 quagga (0.99.13-1ubuntu0.1) karmic-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible arbitrary code
     execution via malformed Outbound Route Filtering (ORF) record
     - debian/patches/91_CVE-2010-2948.dpatch: improve bounds checking in
       bgpd/bgp_packet.c.
     - CVE-2010-2948
   * SECURITY UPDATE: denial of service via unknown AS type
     - debian/patches/91_CVE-2010-2949.dpatch: check segment types and
       lengths in bgpd/bgp_aspath.*, bgpd/bgp_attr.c, tests/aspath_test.c.
     - CVE-2010-2949
Checksums-Sha1: 
 475992def448d4f7550dcc043c2386f95f61b1bb 2067 quagga_0.99.13-1ubuntu0.1.dsc
 195e3b15d2cd7b84325fbc7139b96a07b3edf2c7 35758 quagga_0.99.13-1ubuntu0.1.diff.gz
Checksums-Sha256: 
 3cbc9c11298b6cacabbf829168eb932680cba14a6a592706e921e296ba980a5b 2067 quagga_0.99.13-1ubuntu0.1.dsc
 d9eb91aceafa5730b48485c185fd12efa3461671333b006d13d5ceb643a05175 35758 quagga_0.99.13-1ubuntu0.1.diff.gz
Files: 
 915cb6412ba0b183d30ccecfddc6305d 2067 net optional quagga_0.99.13-1ubuntu0.1.dsc
 bc638ecdc3c5ba6875a5fa0650e823f6 35758 net optional quagga_0.99.13-1ubuntu0.1.diff.gz
Original-Maintainer: Christian Hammers <ch at debian.org>


More information about the Karmic-changes mailing list