[ubuntu/questing-proposed] bind9 1:9.20.4-3ubuntu2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Wed May 21 14:15:18 UTC 2025
bind9 (1:9.20.4-3ubuntu2) questing; urgency=medium
* SECURITY UPDATE: message with invalid TSIG causes an assertion failure
- debian/patches/CVE-2025-40775.patch: properly validate messages in
lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h,
lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c.
- CVE-2025-40775
Date: Tue, 20 May 2025 07:25:11 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/bind9/1:9.20.4-3ubuntu2
-------------- next part --------------
Format: 1.8
Date: Tue, 20 May 2025 07:25:11 -0400
Source: bind9
Built-For-Profiles: noudeb
Architecture: source
Version: 1:9.20.4-3ubuntu2
Distribution: questing
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
bind9 (1:9.20.4-3ubuntu2) questing; urgency=medium
.
* SECURITY UPDATE: message with invalid TSIG causes an assertion failure
- debian/patches/CVE-2025-40775.patch: properly validate messages in
lib/dns/include/dns/message.h, lib/dns/include/dns/tsig.h,
lib/dns/message.c, lib/dns/tsig.c, tests/dns/tsig_test.c.
- CVE-2025-40775
Checksums-Sha1:
904378d462c20f66b30ae7d2b714ba7d2be23276 3209 bind9_9.20.4-3ubuntu2.dsc
4d69faf4c36390e360773ff005214262bd7230b7 83724 bind9_9.20.4-3ubuntu2.debian.tar.xz
2b2aabfcdd6bfb90739417428a6372791c3fbb5e 7801 bind9_9.20.4-3ubuntu2_source.buildinfo
Checksums-Sha256:
daf6b71dda41d58823cd8ee65d7470f4e536d0d1b51b66eacbc1578efc4aafcc 3209 bind9_9.20.4-3ubuntu2.dsc
ad1eb96c8ed12d7c9fcf05cae66948480ec0f97003f086cf36fb8784e63bfc80 83724 bind9_9.20.4-3ubuntu2.debian.tar.xz
3711d6daf1112ac8325ec4c9a7857ea5821f6e2b8e32a3979095f01c3b107cdb 7801 bind9_9.20.4-3ubuntu2_source.buildinfo
Files:
2a747202638d1184d1df453d99eaff13 3209 net optional bind9_9.20.4-3ubuntu2.dsc
9b8731e74f9662c232545a19753861a4 83724 net optional bind9_9.20.4-3ubuntu2.debian.tar.xz
1819bbe5a929421756507372ef0427fe 7801 net optional bind9_9.20.4-3ubuntu2_source.buildinfo
Original-Maintainer: Debian DNS Team <team+dns at tracker.debian.org>
More information about the Questing-changes
mailing list