[ubuntu/trusty-proposed] bind9 1:9.9.3.dfsg.P2-4ubuntu3 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Mon Jan 13 20:48:14 UTC 2014 

bind9 (1:9.9.3.dfsg.P2-4ubuntu3) trusty; urgency=low

  * SECURITY UPDATE: denial of service when processing NSEC3-signed zone
    queries
    - debian/patches/CVE-2014-0591.patch: don't call memcpy with
      overlapping ranges in bin/named/query.c.
    - patch backported from 9.9.4-P2.
    - CVE-2014-0591

Date: Fri, 10 Jan 2014 09:36:55 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/bind9/1:9.9.3.dfsg.P2-4ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 10 Jan 2014 09:36:55 -0500
Source: bind9
Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-90 libdns99 libisc95 liblwres90 libisccc90 libisccfg90 dnsutils lwresd
Architecture: source
Version: 1:9.9.3.dfsg.P2-4ubuntu3
Distribution: trusty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 bind9      - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 bind9utils - Utilities for BIND
 dnsutils   - Clients provided with BIND
 host       - Transitional package
 libbind-dev - Static Libraries and Headers used by BIND
 libbind9-90 - BIND9 Shared Library used by BIND
 libdns99   - DNS Shared Library used by BIND
 libisc95   - ISC Shared Library used by BIND
 libisccc90 - Command Channel Library used by BIND
 libisccfg90 - Config File Handling Library used by BIND
 liblwres90 - Lightweight Resolver Library used by BIND
 lwresd     - Lightweight Resolver Daemon
Changes: 
 bind9 (1:9.9.3.dfsg.P2-4ubuntu3) trusty; urgency=low
 .
   * SECURITY UPDATE: denial of service when processing NSEC3-signed zone
     queries
     - debian/patches/CVE-2014-0591.patch: don't call memcpy with
       overlapping ranges in bin/named/query.c.
     - patch backported from 9.9.4-P2.
     - CVE-2014-0591
Checksums-Sha1: 
 a80d1d1a8d8d080062c0ddbb570f52f180ae6e0c 2764 bind9_9.9.3.dfsg.P2-4ubuntu3.dsc
 dc74b0ab27bec770772d143a47406ed6b2e83f6a 246983 bind9_9.9.3.dfsg.P2-4ubuntu3.diff.gz
Checksums-Sha256: 
 551d2fad29ada7cd0b1cb326b01f1957bd79a00971bd0bfcedbc95f33f64141b 2764 bind9_9.9.3.dfsg.P2-4ubuntu3.dsc
 b89bd0ffac5dafb558ae19d80c022177900b893610afc6041f011f92f60c3b2a 246983 bind9_9.9.3.dfsg.P2-4ubuntu3.diff.gz
Files: 
 37eca3efe7c73ad3ee6543c7203b3f89 2764 net optional bind9_9.9.3.dfsg.P2-4ubuntu3.dsc
 5d7033c01391a7de431670227a1a3634 246983 net optional bind9_9.9.3.dfsg.P2-4ubuntu3.diff.gz
Original-Maintainer: LaMont Jones <lamont at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)

iQIcBAEBCgAGBQJS1FBRAAoJEGVp2FWnRL6TYwQQAIr5vrEzRPBHL/ygUIc7Igrz
yl6q1BJx7oAgygbCcJl/TMrgU7k7Lcn19yJNg1vqS3XKRvVyqnvlTKT+dhGVN7ML
o+YpuJyhtHrpE1SOWY23HDZefJYHAHvVcJ1MJ7tPZT9QWpV48e3Sx3TglfO1FZv9
/qJXg4w8fWlgE/FQ6F62ydoGFkpYro+myGz56XHc3ar/Rt6LjmPtD/UNlV4arWgx
xsxl9KrVf4y59STo6dN+W6OWgI6eLsn1lIKNxlpfaDI4ptZDFCzR7jx3W7f3qClo
CYikl0gGyN/mmAFL+DtxwOqzoX8T8rsSg8Ye6weBxi7I6fiazmiU68DIufg8Btzd
e/wITxZX/8Sxiozjpi6zAW9aDeDvqnRPB3D3SWgwMJRDJH+ZumIjLR2geHH9wQuu
Zy9Xx3mzgwctYhub74UD+k158tTFjoyttktXoQqxsezjmfUGq3rT8cUdslWQ+/im
rbJKj2Vmq/+UneMSI6v7zM7b5GKeDrurkYpl4rv8+OFFeM0O5eZWZvWelkkrkQUL
9fALszgFyJ0QdMSxxazkM4TzGTbHfpPgj2Cx0DuJUvLXAmehfFZpIwu02U2j74p9
8TwxgX4PLOzVUd5qCMvA5oyuZHGEfhe+fYrM48BFsC8KqL+5kTbrq1TyjtPXjUcu
8SzY5TkH2BfEpdC6KJZ4
=Ezvy
-----END PGP SIGNATURE-----

More information about the Trusty-changes mailing list