Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted bind9 1:9.20.15-1 (source) into unstable
Date: Wed, 22 Oct 2025 15:20:03 +0000
Signed by: Ondřej Surý <ondrej@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 22 Oct 2025 16:40:20 +0200
Source: bind9
Architecture: source
Version: 1:9.20.15-1
Distribution: unstable
Urgency: medium
Maintainer: Debian DNS Team <team+dns@tracker.debian.org>
Changed-By: Ondřej Surý <ondrej@debian.org>
Changes:
 bind9 (1:9.20.15-1) unstable; urgency=medium
 .
   * New upstream version 9.20.15
    - [CVE-2025-8677]: DNSSEC validation fails if matching but invalid
      DNSKEY is found
    - [CVE-2025-40778]: Address various spoofing attacks.
    - [CVE-2025-40780]: Cache-poisoning due to weak pseudo-random number
      generator
Checksums-Sha1:
 6af049366286c92c4e28d8b335c8f6f57fd3f88d 3165 bind9_9.20.15-1.dsc
 ec1cdd69dee34b0b3a3fc126146e26a172873110 5765964 bind9_9.20.15.orig.tar.xz
 5c30cd697e5bc4bdafbc5e28296781dac1225dd4 833 bind9_9.20.15.orig.tar.xz.asc
 7e03a718ec2726dcacd584b0892d88243efa5614 61888 bind9_9.20.15-1.debian.tar.xz
 ca99e8b9a56ec00c5efdb3b78f729c6fbc015abf 14358 bind9_9.20.15-1_amd64.buildinfo
Checksums-Sha256:
 10542b2f0acff223e65f94c01fda5726183584dda4b3b9a6e3ec31b7cb8c48fd 3165 bind9_9.20.15-1.dsc
 d62b38fae48ba83fca6181112d0c71018d8b0f2ce285dc79dc6a0367722ccabb 5765964 bind9_9.20.15.orig.tar.xz
 2e9215f01c68734fd03b207dc1dd62fe32af79d02fe8182002529faaca6c9361 833 bind9_9.20.15.orig.tar.xz.asc
 56b15f47abc8801f216467fb84b68521661aa564de3f168cabb4e9bd014ce8c3 61888 bind9_9.20.15-1.debian.tar.xz
 281de3b47b652515fdeddc761da03b16dca2b99c777e2d51f89078ba1bb374b1 14358 bind9_9.20.15-1_amd64.buildinfo
Files:
 8e23d274c4e8e75e79daea56e975a3b7 3165 net optional bind9_9.20.15-1.dsc
 cb2486bdfed8959e58e36805c0f3e9f7 5765964 net optional bind9_9.20.15.orig.tar.xz
 9c93fed4851f94156a17f993eb394590 833 net optional bind9_9.20.15.orig.tar.xz.asc
 c3c3644686d8034bd5ed5160a27df209 61888 net optional bind9_9.20.15-1.debian.tar.xz
 4ac50502096811c1e173d39dc6dd760c 14358 net optional bind9_9.20.15-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEw2Gx4wKVQ+vGJel9g3Kkd++uWcIFAmj47zBfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEMz
NjFCMUUzMDI5NTQzRUJDNjI1RTk3RDgzNzJBNDc3RUZBRTU5QzIACgkQg3Kkd++u
WcIwMA/6AoDtDl4dBUtquYab+o+74GkzbXdzayMsC85eIpqg2bBQe4phXlscY1n6
rkAIezrucHAvLOp8G8La6gHqji3GH3onIB8SkN7hQL8rF8g/LI8eWKJl793cwoy2
B+9KDFfQWc3LhNQN3S0MG9au2IITufR6itryvmUm2raYh2KDqyqcbsh7C2JL1bxD
I57lp2o71UfOKHyYqaQJGRexBPY+fitH6Gchj48y62LCuGw5q+076M2mS0Hh5CFz
7ypmouqvmqdSbKXJCKH13bZ9mKT289NoxSHs6a23MDlwTnaNwX+ducujN6HR+S+l
Ff3Pt7an7BW/Z9DYSPAiGA3o43i6ZTykexHnvRmA3uS2cJ5OJX44MW+nRyM66u7E
ZS1DEZu+823L/wXga+LRQmSYP80W+vuDNnm3uXKhShgCc3sqPlw/LZ0XISnE3a6O
0/Izvg5Q9cu5ytm7uN8t1NyiyVVn/vO0XfQZ8XrUFmbL8cWLkQ4pKK547BlqNNW1
DUBmW15rcCdZE8XoFJhVh9gpVwWXKh8ddrxU0dfdpKDwa8ms1Wlrch/5/dZkjNHh
ZitxcsJ3b+DtXNxehuxvyhniV71cKrTf2EB/a5G8M2I38DNwPaAU1To5w5Cwt5qu
TjFNFl1MZ3OqpE0cZPKoYyNM49knnxvOi59Ru8sbKkyS9Xvv2ig=
=vmnM
-----END PGP SIGNATURE-----
News for package bind9
