Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-experimental-changes@lists.debian.org> , <debian-devel-changes@lists.debian.org>
Subject: Accepted bind9 1:9.21.14-1 (source) into experimental
Date: Wed, 22 Oct 2025 15:49:38 +0000
Signed by: Ondřej Surý <ondrej@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 22 Oct 2025 17:04:56 +0200
Source: bind9
Architecture: source
Version: 1:9.21.14-1
Distribution: experimental
Urgency: medium
Maintainer: Debian DNS Team <team+dns@tracker.debian.org>
Changed-By: Ondřej Surý <ondrej@debian.org>
Changes:
 bind9 (1:9.21.14-1) experimental; urgency=medium
 .
   * New upstream version 9.21.14
    - [CVE-2025-8677]: DNSSEC validation fails if matching but invalid
      DNSKEY is found
    - [CVE-2025-40778]: Address various spoofing attacks.
    - [CVE-2025-40780]: Cache-poisoning due to weak pseudo-random number
      generator
Checksums-Sha1:
 76ee4098d0eb3bc2bbb5e43930bef456fbfa8255 3108 bind9_9.21.14-1.dsc
 878d3c0c87d68cc59cbf4fd99eba0728c8c054a8 5257932 bind9_9.21.14.orig.tar.xz
 05cbdc2293706a3d26b77bb7d6338e72f2c635d0 833 bind9_9.21.14.orig.tar.xz.asc
 dc6ad10309c52b95881a97cda2df2409a10da8e2 62340 bind9_9.21.14-1.debian.tar.xz
 879a2c24a6fc2b3204f293078e2afd4e5d9e3cf8 14507 bind9_9.21.14-1_amd64.buildinfo
Checksums-Sha256:
 d2381f30186b9ffc20eb4d0e5dbff667dd10d3651ea6fb1c6a1ee9abcdbcd8fc 3108 bind9_9.21.14-1.dsc
 003b94d1404ec33174f28951de4ba261742de333cb869e6b909f1ada3261fe9f 5257932 bind9_9.21.14.orig.tar.xz
 7563b9907bbde7eaf691df03b6b9ee1c172d99c100466174c6513bc2b42fbaee 833 bind9_9.21.14.orig.tar.xz.asc
 82e38b9d48872a916da98d218f4969d92658c5e6014f826b2f02f2124227bbcb 62340 bind9_9.21.14-1.debian.tar.xz
 dd37a1ed861ed47df23288950ce5de9da16648226dac6a90a187eed3287e3a3b 14507 bind9_9.21.14-1_amd64.buildinfo
Files:
 2544c138884863cc55cd407e892df371 3108 net optional bind9_9.21.14-1.dsc
 3ca488e5171e438d2384b73697054aa0 5257932 net optional bind9_9.21.14.orig.tar.xz
 15d218b0ecaa62c3e000f30af797b4be 833 net optional bind9_9.21.14.orig.tar.xz.asc
 c825778011919720ff69f5252c34e910 62340 net optional bind9_9.21.14-1.debian.tar.xz
 027cb019ca3b56b370214b60e7801ee1 14507 net optional bind9_9.21.14-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Eq99
-----END PGP SIGNATURE-----

News for package bind9