Your message dated Sat, 28 Oct 2006 08:21:47 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#386237: fixed in bind9 1:9.2.4-1sarge1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: bind9
Version: 1:9.2.4-1
Severity: grave
Tags: security
Hello
I assume that the Security-Team has already been notified by vendor-sec
by this? Is a DSA in preperation?
http://www.isc.org/index.pl?/sw/bind/bind-security.php
* SIG Query Processing (CVE-2006-4095)
* Excessive Recursive Queries INSIST failure (CVE-2006-4096)
bye,
-christian-
--- End Message ---
--- Begin Message ---
Source: bind9
Source-Version: 1:9.2.4-1sarge1
We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive:
bind9-doc_9.2.4-1sarge1_all.deb
to pool/main/b/bind9/bind9-doc_9.2.4-1sarge1_all.deb
bind9-host_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/bind9-host_9.2.4-1sarge1_powerpc.deb
bind9_9.2.4-1sarge1.diff.gz
to pool/main/b/bind9/bind9_9.2.4-1sarge1.diff.gz
bind9_9.2.4-1sarge1.dsc
to pool/main/b/bind9/bind9_9.2.4-1sarge1.dsc
bind9_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/bind9_9.2.4-1sarge1_powerpc.deb
dnsutils_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/dnsutils_9.2.4-1sarge1_powerpc.deb
libbind-dev_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/libbind-dev_9.2.4-1sarge1_powerpc.deb
libdns16_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/libdns16_9.2.4-1sarge1_powerpc.deb
libisc7_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/libisc7_9.2.4-1sarge1_powerpc.deb
libisccc0_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/libisccc0_9.2.4-1sarge1_powerpc.deb
libisccfg0_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/libisccfg0_9.2.4-1sarge1_powerpc.deb
liblwres1_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/liblwres1_9.2.4-1sarge1_powerpc.deb
lwresd_9.2.4-1sarge1_powerpc.deb
to pool/main/b/bind9/lwresd_9.2.4-1sarge1_powerpc.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
LaMont Jones <[EMAIL PROTECTED]> (supplier of updated bind9 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 6 Sep 2006 10:03:20 -0600
Source: bind9
Binary: libisccc0 libdns16 lwresd bind9-doc dnsutils bind9 libbind-dev libisc7
libisccfg0 bind9-host liblwres1
Architecture: source powerpc all
Version: 1:9.2.4-1sarge1
Distribution: stable
Urgency: low
Maintainer: Martin Schulze <[EMAIL PROTECTED]>
Changed-By: LaMont Jones <[EMAIL PROTECTED]>
Description:
bind9 - Internet Domain Name Server
bind9-doc - Documentation for BIND
bind9-host - Version of 'host' bundled with BIND 9.X
dnsutils - Clients provided with BIND
libbind-dev - Static Libraries and Headers used by BIND
libdns16 - DNS Shared Library used by BIND
libisc7 - ISC Shared Library used by BIND
libisccc0 - Command Channel Library used by BIND
libisccfg0 - Config File Handling Library used by BIND
liblwres1 - Lightweight Resolver Library used by BIND
lwresd - Lightweight Resolver Daemon
Closes: 386237 386245
Changes:
bind9 (1:9.2.4-1sarge1) stable; urgency=low
.
* Backport bugfix for 1941 from 9.2.6-P1. Closes: #386237, #386245
- fixes CVE-2006-4095 and CVE-2006-4096.
- ncache_adderesult() should set eresult even if no rdataset is passed
to it. [RT #15642]
Files:
1c1f68802373715b71c85df3a4e42959 742 net optional bind9_9.2.4-1sarge1.dsc
2ccbddbab59aedd6b8711b628b5472bd 4564219 net optional bind9_9.2.4.orig.tar.gz
dccd8daf65751535821c1d5feb007782 91537 net optional bind9_9.2.4-1sarge1.diff.gz
df36851fe572ba9372f51c42225434e8 156816 doc optional
bind9-doc_9.2.4-1sarge1_all.deb
d5cc4b04035ea481efb5250d61283e31 282768 net optional
bind9_9.2.4-1sarge1_powerpc.deb
eed4524990cf16a591e57ef61470c09c 93750 net standard
bind9-host_9.2.4-1sarge1_powerpc.deb
234ce0842c3ac7a207e3b7b698572647 1109584 libdevel optional
libbind-dev_9.2.4-1sarge1_powerpc.deb
20e302aada3ef87960e3060adf8c058e 462120 libs standard
libdns16_9.2.4-1sarge1_powerpc.deb
146b977cef2b4ff312d88ee69d9a911d 158568 libs standard
libisc7_9.2.4-1sarge1_powerpc.deb
04eb51f3b1e31cd6ea32df7f84674d79 94398 libs standard
liblwres1_9.2.4-1sarge1_powerpc.deb
4c76f8a6fd2f8b87c6ac6b252d97cff5 78214 libs optional
libisccc0_9.2.4-1sarge1_powerpc.deb
eacee514e6e33b3958c58d848c7c89e4 92182 libs optional
libisccfg0_9.2.4-1sarge1_powerpc.deb
e1b2319a705cfd55c868428e3fc223da 160356 net standard
dnsutils_9.2.4-1sarge1_powerpc.deb
d1da6cec7019371c0ed92a354b764875 180672 net optional
lwresd_9.2.4-1sarge1_powerpc.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iD8DBQFFAB3MW5ql+IAeqTIRApJvAJwMrwoGOLZ8NGb9aheKHUTe0RfnRgCfYWea
FQL7oqlJNEFXcO377sC4Tjk=
=DPNL
-----END PGP SIGNATURE-----
--- End Message ---
