-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 21 Sep 2022 12:40:02 +0200 Source: bind9 Binary: bind9 bind9-dbgsym bind9-dev bind9-dnsutils bind9-dnsutils-dbgsym bind9-doc bind9-host bind9-host-dbgsym bind9-libs bind9-libs-dbgsym bind9-utils bind9-utils-dbgsym bind9utils dnsutils Architecture: source amd64 all Version: 1:9.16.33-1~deb11u1 Distribution: bullseye-security Urgency: high Maintainer: Debian DNS Team <team+dns@tracker.debian.org> Changed-By: Ondřej Surý <ondrej@debian.org> Description: bind9 - Internet Domain Name Server bind9-dev - Static Libraries and Headers used by BIND 9 bind9-dnsutils - Clients provided with BIND 9 bind9-doc - Documentation for BIND 9 bind9-host - DNS Lookup Utility bind9-libs - Shared Libraries used by BIND 9 bind9-utils - Utilities for BIND 9 bind9utils - Transitional package for bind9-utils dnsutils - Transitional package for bind9-dnsutils Closes: 1008021 1009889 Changes: bind9 (1:9.16.33-1~deb11u1) bullseye-security; urgency=high . * New upstream version 9.16.33 - CVE-2022-2795: Processing large delegations may severely degrade resolver performance - CVE-2022-2881: Buffer overread in statistics channel code - CVE-2022-2906: Memory leaks in code handling Diffie-Hellman key exchange via TKEY RRs (OpenSSL 3.0.0+ only) - CVE-2022-3080: BIND 9 resolvers configured to answer from stale cache with zero stale-answer-client-timeout may terminate unexpectedly - CVE-2022-38177: Memory leak in ECDSA DNSSEC verification code - CVE-2022-38178: Memory leaks in EdDSA DNSSEC verification code * Drop libldap2-dev from Build-Depends (Closes: #1008021) * Add runtime dependency on libuv1 >= 1.40.0 (Closes: #1009889) Checksums-Sha1: 9608ebd938f05de5e032ec8b4819bf4bad06f8bb 3266 bind9_9.16.33-1~deb11u1.dsc 29b1d31666e6f6030759ee700f512de8537f5b25 5092516 bind9_9.16.33.orig.tar.xz 87345affc6843a0d6ec812d24d09fcd7a1810b0c 833 bind9_9.16.33.orig.tar.xz.asc 5e2b3df585add099078106201deed3f714784cf5 78552 bind9_9.16.33-1~deb11u1.debian.tar.xz 622e2f5eac0a61c505ea4776d49e72d37915967f 515568 bind9-dbgsym_9.16.33-1~deb11u1_amd64.deb 740247b01a7cd6e251db6b312633e4d8f52b032f 1764200 bind9-dev_9.16.33-1~deb11u1_amd64.deb 37793b0fec4b0e5aee79700c9e2d6695ead5878b 283768 bind9-dnsutils-dbgsym_9.16.33-1~deb11u1_amd64.deb 4bb57b2b3aae27b1fb6043528911673a0d371b2c 399828 bind9-dnsutils_9.16.33-1~deb11u1_amd64.deb 4229dc4561a1b03f5110122dd742322ce5cb9e0d 5139692 bind9-doc_9.16.33-1~deb11u1_all.deb a7d6cf81cdbbd203738df33b54dde8b3fa48e7ad 80152 bind9-host-dbgsym_9.16.33-1~deb11u1_amd64.deb 59f1b166ba167490489e4886494d669a16c68b93 305788 bind9-host_9.16.33-1~deb11u1_amd64.deb 7e8a7d9d454141cd796efbd491eef011c48524c7 3444592 bind9-libs-dbgsym_9.16.33-1~deb11u1_amd64.deb 2452a395560d3fc934370317fd01bf2674cd195c 1410264 bind9-libs_9.16.33-1~deb11u1_amd64.deb 34b9975271fbea335d1f4cdabccbf7441915cf3d 263380 bind9-utils-dbgsym_9.16.33-1~deb11u1_amd64.deb c7ab8908f640e734a7ad2d25fe3fe6352c80203d 432200 bind9-utils_9.16.33-1~deb11u1_amd64.deb 736e97d11f07a1cc241587c3e70d217d7ee07a7b 15138 bind9_9.16.33-1~deb11u1_amd64.buildinfo c118f4be067913a1403b48502e6b397059b79541 491204 bind9_9.16.33-1~deb11u1_amd64.deb 084487f328b7d74e4d75086af674a54bcc6afd57 264736 bind9utils_9.16.33-1~deb11u1_all.deb e76052e3a76072435f15d8bb7d780567e0ec3b15 264736 dnsutils_9.16.33-1~deb11u1_all.deb Checksums-Sha256: 0a6f65c3e9ac6a3ca38cdf4a113d41009586994cbebebafd9e7c3d654ca8b2ae 3266 bind9_9.16.33-1~deb11u1.dsc ec4fbea4b2e368d1824971509e33fa159224ad14b436034c6bcd46104c328d91 5092516 bind9_9.16.33.orig.tar.xz d27787a7d78645f69121270d1f356a6f4dd5088eaadef25d8c7891559ff01036 833 bind9_9.16.33.orig.tar.xz.asc ae3f95ef18d436693ef466228246f6c4c76a396d39996c0258aa3479f5078288 78552 bind9_9.16.33-1~deb11u1.debian.tar.xz 4cda6daa98b19f6eb83ae24e5d57b117de52b28c08d2480c4d7517624ead828f 515568 bind9-dbgsym_9.16.33-1~deb11u1_amd64.deb 1f2a3f53f4295a65896567b9adf3d2705b417c2e44367395ce00ce26ec1a357d 1764200 bind9-dev_9.16.33-1~deb11u1_amd64.deb 231e3f050f2969a5aaa1067df2fa392953aa83b6a59b4c0dbc38c1a0d1c775cd 283768 bind9-dnsutils-dbgsym_9.16.33-1~deb11u1_amd64.deb b049235e8e1936f8cf490bd0c0cfc8fd9d2ab7f6a8fe5bcf0d2edab7e87df194 399828 bind9-dnsutils_9.16.33-1~deb11u1_amd64.deb 9b2e1a63fd885c8f44fe15451bf09f0d7414d67883f8f2f51a760f5be37b7290 5139692 bind9-doc_9.16.33-1~deb11u1_all.deb 52de511e1140923a87e5868c3f122a74f0371adc461d6abc9195ee35f97c3514 80152 bind9-host-dbgsym_9.16.33-1~deb11u1_amd64.deb f49f3578f75021d3cc764af6a4f7360a65aef1b33a2b7afbbce091fe21ff8b14 305788 bind9-host_9.16.33-1~deb11u1_amd64.deb 58ef8b669a5ab20d1e922c617361c615a653108c2522e64613e2fb79a3c71703 3444592 bind9-libs-dbgsym_9.16.33-1~deb11u1_amd64.deb 9a5937522c1520c523da22f4b17208c976f8b9845d2330621fed8da5e2350446 1410264 bind9-libs_9.16.33-1~deb11u1_amd64.deb 24cdd1a7676c74643dda084148aef4d6dd2f5dc016e320f08e3eb37e7714ac42 263380 bind9-utils-dbgsym_9.16.33-1~deb11u1_amd64.deb 4dc8c29c0734881a161f02c4400bf2298708d52e6e7c30f9bc00b3cf4b764581 432200 bind9-utils_9.16.33-1~deb11u1_amd64.deb d00c49eec128679eef2614a0567687a5ff331c466cd51538a4b5c91bda2d08db 15138 bind9_9.16.33-1~deb11u1_amd64.buildinfo 40b1755ad58075fbb5e96cc7480ce5719f6a687aa21f015807735cb4979557b5 491204 bind9_9.16.33-1~deb11u1_amd64.deb 836106f3620fdd63c69977e37425d2b2a8d962c23050e7e996c0ccd8068dbbc8 264736 bind9utils_9.16.33-1~deb11u1_all.deb 1d6c145c04454057278fd8d80de76864d30c37b820cf337382ed8404cb8e481f 264736 dnsutils_9.16.33-1~deb11u1_all.deb Files: cbcbabe7395bd2f978f8342b1e134610 3266 net optional bind9_9.16.33-1~deb11u1.dsc 4b31052fd765bfebcca60accb0418090 5092516 net optional bind9_9.16.33.orig.tar.xz b33f57b58f134ffede1c106ebcc7ba1a 833 net optional bind9_9.16.33.orig.tar.xz.asc 9a5c543db3585a99f96ac453b1dc5b47 78552 net optional bind9_9.16.33-1~deb11u1.debian.tar.xz 77129d22d29a7123d866d9bca4639236 515568 debug optional bind9-dbgsym_9.16.33-1~deb11u1_amd64.deb 145b68c068d2b5eda0880537b8119f96 1764200 devel optional bind9-dev_9.16.33-1~deb11u1_amd64.deb c6090ceadac204be7c1dcf445555fb70 283768 debug optional bind9-dnsutils-dbgsym_9.16.33-1~deb11u1_amd64.deb 00028c5cfb0b32f203e58402985aea7b 399828 net standard bind9-dnsutils_9.16.33-1~deb11u1_amd64.deb 68261a6ab0f336f104aab400932830cc 5139692 doc optional bind9-doc_9.16.33-1~deb11u1_all.deb 2c6116f81483f4f8df95a924b36093bb 80152 debug optional bind9-host-dbgsym_9.16.33-1~deb11u1_amd64.deb 7fbf226eb24ebd9b3cc439e7eec9b7bb 305788 net standard bind9-host_9.16.33-1~deb11u1_amd64.deb 34147ec4488ea1a713c0772a17f4c4ee 3444592 debug optional bind9-libs-dbgsym_9.16.33-1~deb11u1_amd64.deb d78c6e8ef392405d71396490e388053e 1410264 libs standard bind9-libs_9.16.33-1~deb11u1_amd64.deb cc2c1522c7f565699dd82be2195c93eb 263380 debug optional bind9-utils-dbgsym_9.16.33-1~deb11u1_amd64.deb 3bf85bd071156cb6d6e15f0d5a9c5016 432200 net optional bind9-utils_9.16.33-1~deb11u1_amd64.deb 8e14f1ee7604f15cff647ac7a7b8d2ca 15138 net optional bind9_9.16.33-1~deb11u1_amd64.buildinfo f40e609ee136134ed704d6bdd73ecfb9 491204 net optional bind9_9.16.33-1~deb11u1_amd64.deb 688353b53e4045e37684449e99c4a066 264736 oldlibs optional bind9utils_9.16.33-1~deb11u1_all.deb 97aba8c438e9f83560bff7b4882bb660 264736 oldlibs optional dnsutils_9.16.33-1~deb11u1_all.deb -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEw2Gx4wKVQ+vGJel9g3Kkd++uWcIFAmMq7k1fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEMz NjFCMUUzMDI5NTQzRUJDNjI1RTk3RDgzNzJBNDc3RUZBRTU5QzIACgkQg3Kkd++u WcJ38Q/9ECmIGErD3cjlByPOyFAMUqbcZsXB/ZQFNV++8DoSZuc6Lds3YoC3W0cr aTLoRLHLeh9s8bE5OMgt9EnGp/0XX2crdWfQMzXxEnMKfinY0Pklu5wIXT+tVLbl enfFf9RLWj8qWlqXDyYK8yUSNzUsWYQ0vONFDofgMM8w9NA9hpbC7qohTSlsDVxu v4LSNfzmSLzIXb9U68TMhlgW3dC276QLj6NkCF6l+ds8NT2OYUtq7fdhfGOgmQEs 2s1YXSkBAdUO96GCAaZ2N9YVwe0azN45YoaSWfA1fsYeRtg0vbrBjrv+2/+Hk22a YVpo3xIPUZyeUrIaQE4kEyBk/UKwM23nOoOLQP0s0vlT0zY1gzMPEgBOHOmsBTL5 kWTWiUy8jH7Fo3e3q4NxllSpXpMGt5/g3DPnS7IYgR7JeBizUIxWZGRLblAr5mb7 VIMxOhYBJEwerFgU7gXzoqX6mQqrB47xIPJSeQB3LmWXbicaCGptzcv8f5Fm4Q1r vqvu2TgqWgp9oCnnC8Z7wrqD8aslGTDtJb8it2aJZjQH0QvvROetBjsMIH7TuPZI Wpgf4MWL0HSo5oi5QXyNqQsYKHQHgi4Tb2G39cnwjDpF/tICQVNEvRzi/fhUPTUi ik5hl98H/CJIkutQZRls8XPi/s2a6JGoxcPHWw8MIBi9RyCIUvQ= =ZM2Y -----END PGP SIGNATURE-----