Your message dated Sat, 22 Feb 2014 16:00:09 +0000 with message-id <e1whezp-0004db...@franck.debian.org> and subject line Bug#735190: fixed in bind9 1:9.9.5.dfsg-1 has caused the Debian Bug report #735190, regarding bind9: CVE-2014-0591: A Crafted Query Against an NSEC3-signed Zone Can Crash BIND to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 735190: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=735190 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: bind9 Severity: grave Tags: security upstream fixed-upstream Hi, the following vulnerability was published for bind9. CVE-2014-0591[0,1]: A Crafted Query Against an NSEC3-signed Zone Can Crash BIND If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591 http://security-tracker.debian.org/tracker/CVE-2014-0591 [1] https://kb.isc.org/article/AA-01078 Please adjust the affected versions in the BTS as needed. (From the versions, all bind9 versions in Debian oldstable, stable and unstable should be affected). Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: bind9 Source-Version: 1:9.9.5.dfsg-1 We believe that the bug you reported is fixed in the latest version of bind9, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 735...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. LaMont Jones <lam...@debian.org> (supplier of updated bind9 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 11 Feb 2014 09:16:05 -0700 Source: bind9 Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-90 libdns100 libisc95 liblwres90 libisccc90 libisccfg90 dnsutils lwresd Architecture: all i386 source Version: 1:9.9.5.dfsg-1 Distribution: experimental Urgency: low Maintainer: LaMont Jones <lam...@debian.org> Changed-By: LaMont Jones <lam...@debian.org> Closes: 722669 724844 735190 Description: bind9-doc - Documentation for BIND bind9-host - Version of 'host' bundled with BIND 9.X bind9 - Internet Domain Name Server bind9utils - Utilities for BIND dnsutils - Clients provided with BIND host - Transitional package libbind9-90 - BIND9 Shared Library used by BIND libbind-dev - Static Libraries and Headers used by BIND libdns100 - DNS Shared Library used by BIND libisc95 - ISC Shared Library used by BIND libisccc90 - Command Channel Library used by BIND libisccfg90 - Config File Handling Library used by BIND liblwres90 - Lightweight Resolver Library used by BIND lwresd - Lightweight Resolver Daemon Changes: bind9 (1:9.9.5.dfsg-1) experimental; urgency=low . [Internet Software Consortium, Inc] . * New upstream version: 9.9.5 Closes: #735190 . [Martin Nagy] . * dynamic loading of database backends. See: http://pkgs.fedoraproject.org/cgit/bind.git/tree/bind-96-dyndb.patch. Closes: #722669 . [LaMont Jones] . * fix sonames * merge ubuntu changes * Deliver dns/rrl.h. Closes: #724844 * rules tweak to make backports to pre-dh-systemd releases easier Checksums-Sha1: 722395528c6efd758cb008dbc4bd89d0a73f816e 337924 bind9-doc_9.9.5.dfsg-1_all.deb ade9dc5c186dd7e6e0fe5f199d5a951976c107d7 21642 host_9.9.5.dfsg-1_all.deb 95a39b44bc2455fee53f64a207539f40013878eb 307452 bind9_9.9.5.dfsg-1_i386.deb 408a42a5278773e2133c771929a3ae17ecb82899 151628 bind9utils_9.9.5.dfsg-1_i386.deb cc382dbbcd0e5ef82dbff495bba690e68e2ad21f 64090 bind9-host_9.9.5.dfsg-1_i386.deb 3a62ce6a3efbc16562c56a665458e1ad85ec519c 1197116 libbind-dev_9.9.5.dfsg-1_i386.deb 6fdcb41c4b3809f50155f35da8092cfd4f0966cf 40746 libbind9-90_9.9.5.dfsg-1_i386.deb 50650f7a46205634a29f68722ddbb7422219794c 637170 libdns100_9.9.5.dfsg-1_i386.deb 9b294d629dc22b48a25a5c695ccb6251382fbb7a 161210 libisc95_9.9.5.dfsg-1_i386.deb 7369d59aa96ab10e6639271e02875a7c23e2d1a3 49546 liblwres90_9.9.5.dfsg-1_i386.deb be5ed0ba4bbd79903e57f44acb9602d7843175bd 34364 libisccc90_9.9.5.dfsg-1_i386.deb c537c0f06a4a20f814586dbb615b374015cd1f05 52598 libisccfg90_9.9.5.dfsg-1_i386.deb d2f7b09800b22554db8ccaa32dbd706238f99f06 112224 dnsutils_9.9.5.dfsg-1_i386.deb 7d04a61f5d34427ba306d093a196af76bc2f35ce 215960 lwresd_9.9.5.dfsg-1_i386.deb a6edae1fc6cec8654e15641d97d95af05cb7afd5 1975 bind9_9.9.5.dfsg-1.dsc ea05323d1d799fae970a7124debe297ef71f2cd0 7877309 bind9_9.9.5.dfsg.orig.tar.gz 58cfbe4772b98ad5d70c4ab08fe3266b7f42acdc 173324 bind9_9.9.5.dfsg-1.diff.gz Checksums-Sha256: d380407bd74247c6a5a8ba681dfe4e544c98047e4e7153fe05ef48cf7a9aeb9f 337924 bind9-doc_9.9.5.dfsg-1_all.deb 4c95ede253c2e1bd5b59306ba758c995449b29622bd74bfe8e8ce153933ba8e0 21642 host_9.9.5.dfsg-1_all.deb ab72fc5d2ec0a4afd38a00b2c3adf7ac11bf92c916c2e9e68172c4ba4a35d4a0 307452 bind9_9.9.5.dfsg-1_i386.deb fe0010dfc1b55ff8b12175c091eb1ae6bb8b2bdd51bc5178af32b9eabea2c4fe 151628 bind9utils_9.9.5.dfsg-1_i386.deb 00acd748ec909c19820aafa53d2f9aed6805b5d97240ae6ba5b2c2651281de2a 64090 bind9-host_9.9.5.dfsg-1_i386.deb 53a556a9de4e2c9281c2b13d2bfa9b481e782636bf90817be6b56234cf0f1a5b 1197116 libbind-dev_9.9.5.dfsg-1_i386.deb cdd9cae16c8c93bb114f4984a093ba0dc43f29dc49cd9f5f3461d078ee27b051 40746 libbind9-90_9.9.5.dfsg-1_i386.deb be1b9565d49906f7defff444485134f902a5680bc86c1bdd92276ff8e159f586 637170 libdns100_9.9.5.dfsg-1_i386.deb 95f60c8caaa828bb2efa035a0aa8654bfc7a6952cd21cc0fffc5007c835d2318 161210 libisc95_9.9.5.dfsg-1_i386.deb 89e6d843452d2b3e28803be1a14ec963cc79f5b9afe06d10b28a22e6d5c78e04 49546 liblwres90_9.9.5.dfsg-1_i386.deb d741e48d468051f60b5facb1b9e005eaa293aec5ed91f47a11e5170f439e199e 34364 libisccc90_9.9.5.dfsg-1_i386.deb 3ef466b9805057e0cb14365f2a82555ab974c126178fb6fe994c6f340d9f0648 52598 libisccfg90_9.9.5.dfsg-1_i386.deb 7a5ac69c77e9794d99220eda5378211ab97e2b941b2d72321ee5dc1ccb7565b8 112224 dnsutils_9.9.5.dfsg-1_i386.deb 34d3751e977ce3b922e3b98c38ce2940b627b20c803f8be26b8e5e15242c7bee 215960 lwresd_9.9.5.dfsg-1_i386.deb 0235b6317532e7df600cccb720982529ac783e7132bead354224e78cb3eb4c17 1975 bind9_9.9.5.dfsg-1.dsc 8108e01d5b501642d986beae7dfff9650b5bf54d87677275a8aaf4f0bcb008e6 7877309 bind9_9.9.5.dfsg.orig.tar.gz dc9639f977701003ff52fda047c835c6e9cc7b7e5da46a582eaa76c18e5f0d0e 173324 bind9_9.9.5.dfsg-1.diff.gz Files: 599fd8378c3e19c2234aab7647985f87 337924 doc optional bind9-doc_9.9.5.dfsg-1_all.deb 652341cbb955060484692b157d7f098e 21642 net standard host_9.9.5.dfsg-1_all.deb 98c252ac6c1f0e991634fbdf9fdf505b 307452 net optional bind9_9.9.5.dfsg-1_i386.deb 5ff006db704c388a98d3eaa8894df576 151628 net optional bind9utils_9.9.5.dfsg-1_i386.deb e2a184f0ee6b8d5b9b84336f19ee0a2d 64090 net standard bind9-host_9.9.5.dfsg-1_i386.deb f813e5bfbd64292d70f3e12498b1bede 1197116 libdevel optional libbind-dev_9.9.5.dfsg-1_i386.deb 4f7bafa603456a27ece915601b4fec1c 40746 libs standard libbind9-90_9.9.5.dfsg-1_i386.deb 79bb57ff47072c040e023cabbba7593a 637170 libs standard libdns100_9.9.5.dfsg-1_i386.deb 32c49a8151fb73b04b2e5931fb71d302 161210 libs standard libisc95_9.9.5.dfsg-1_i386.deb 0fa26889d581176ade1ad170bf2228cb 49546 libs standard liblwres90_9.9.5.dfsg-1_i386.deb 76d598d2af8342a6c216d2c77631e3fa 34364 libs optional libisccc90_9.9.5.dfsg-1_i386.deb 7b686d209c041043f0221a4e13a4fa29 52598 libs optional libisccfg90_9.9.5.dfsg-1_i386.deb 5e37847f5e99696ee4784c308ee3c2fa 112224 net standard dnsutils_9.9.5.dfsg-1_i386.deb c34c4066ce098f6fa26604d74df39eaf 215960 net optional lwresd_9.9.5.dfsg-1_i386.deb b1a21703ec48c79151e4b683d7e0c892 1975 net optional bind9_9.9.5.dfsg-1.dsc e3b03e1cd273d708cbfbd862297646ce 7877309 net optional bind9_9.9.5.dfsg.orig.tar.gz edfb3ca77c8316e8719ad21b039ad000 173324 net optional bind9_9.9.5.dfsg-1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iD8DBQFTAmh/zN/kmwoKyScRAsIdAJ91THrZwBTYLeSk3r+MlUmOMg3nPwCdHSdb +JX7IEPMjPjiFFsXN0nTcKg= =5COo -----END PGP SIGNATURE-----
--- End Message ---
