Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted bind9 1:9.16.50-1~deb11u4 (source) into oldoldstable-security
Date: Tue, 04 Nov 2025 13:40:21 +0000
Signed by: Andreas Henriksson <ah@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 30 Oct 2025 10:48:50 +0100
Source: bind9
Architecture: source
Version: 1:9.16.50-1~deb11u4
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian DNS Team <team+dns@tracker.debian.org>
Changed-By: Andreas Henriksson <andreas@fatal.se>
Changes:
 bind9 (1:9.16.50-1~deb11u4) bullseye-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team
   * Add patch for CVE-2025-40778:
     + Address various spoofing attacks
   * Add patch for CVE-2025-40780:
     + Cache-poisoning due to weak pseudo-random number generator
   * Add patches for CVE-2025-8677:
     + DNSSEC validation fails if matching but invalid DNSKEY is found
Checksums-Sha1:
 c9899b8d397dc91b681b99e4771c677979038615 2895 bind9_9.16.50-1~deb11u4.dsc
 a10542aaabad60bbbb8d19efd43591c98c01c277 5134620 bind9_9.16.50.orig.tar.xz
 55713f84b6083d0c5cbed39f5abf61f0893752cd 101960 bind9_9.16.50-1~deb11u4.debian.tar.xz
 6cd33331ece52a3a8558a8b6f8eb8c23e9d03590 7087 bind9_9.16.50-1~deb11u4_source.buildinfo
Checksums-Sha256:
 8e7769dfd19327827aba2527a34ae66b52d7d4e30f058254a030b5c928384533 2895 bind9_9.16.50-1~deb11u4.dsc
 816dbaa3c115019f30fcebd9e8ef8f7637f4adde91c79daa099b035255a15795 5134620 bind9_9.16.50.orig.tar.xz
 d2b8c7508cf602d26a59a696be43662692760f4fa70b714a8e5c63735bd1caec 101960 bind9_9.16.50-1~deb11u4.debian.tar.xz
 1c5ebdfc227184ff823e4745b9f03cf0a05d39170b3e9aa9e56993cf311dcf12 7087 bind9_9.16.50-1~deb11u4_source.buildinfo
Files:
 6f159d7a0274b9140d4b1638eaee9464 2895 net optional bind9_9.16.50-1~deb11u4.dsc
 0aa065323f039e413d234736a727c00e 5134620 net optional bind9_9.16.50.orig.tar.xz
 86c4295a5c0ae724d0877a84591b96d8 101960 net optional bind9_9.16.50-1~deb11u4.debian.tar.xz
 a4828584d51e43d61795fd2552d565e4 7087 net optional bind9_9.16.50-1~deb11u4_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=HFcY
-----END PGP SIGNATURE-----

News for package bind9