Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted bind9 1:9.16.50-1~deb11u5 (source) into oldoldstable-security
Date: Mon, 13 Apr 2026 07:40:15 +0000
Signed by: Bastien ROUCARIÈS <rouca@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 12 Apr 2026 21:07:37 +0200
Source: bind9
Architecture: source
Version: 1:9.16.50-1~deb11u5
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian DNS Team <team+dns@tracker.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Changes:
 bind9 (1:9.16.50-1~deb11u5) bullseye-security; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team
   * Fix CVE-2026-1519:
     If a BIND resolver is performing DNSSEC validation
     and encounters a maliciously crafted zone, the resolver
     may consume excessive CPU. Authoritative-only servers
     are generally unaffected, although there are circumstances
     where authoritative servers may make recursive queries.
Checksums-Sha1:
 06229775e4aed94ebfd79f2faeb956e11055b53c 2895 bind9_9.16.50-1~deb11u5.dsc
 a10542aaabad60bbbb8d19efd43591c98c01c277 5134620 bind9_9.16.50.orig.tar.xz
 c23ea796d47824a6f0f8d534fdf1f8a745dc4830 104644 bind9_9.16.50-1~deb11u5.debian.tar.xz
 2a38d91fa453fbcaa84da0b7af9eee231b055bbb 6389 bind9_9.16.50-1~deb11u5_source.buildinfo
Checksums-Sha256:
 4564c75f63a0cfce178af779c4bffe59f3b03f8f4591893ef60b3e45d6ee6bfb 2895 bind9_9.16.50-1~deb11u5.dsc
 816dbaa3c115019f30fcebd9e8ef8f7637f4adde91c79daa099b035255a15795 5134620 bind9_9.16.50.orig.tar.xz
 1baa0179fb140703c56b9e6e5897d1b953385e64385abe15630d5b0aa7bf8d08 104644 bind9_9.16.50-1~deb11u5.debian.tar.xz
 c7f7c0bc46f138e03e6ac29a4d8862f68a50da283f316b009b175d2ec354695f 6389 bind9_9.16.50-1~deb11u5_source.buildinfo
Files:
 c3258bd0840e41d13476f0dd860a79c4 2895 net optional bind9_9.16.50-1~deb11u5.dsc
 0aa065323f039e413d234736a727c00e 5134620 net optional bind9_9.16.50.orig.tar.xz
 6427ffc2a94f785e13a1ed20c710fb51 104644 net optional bind9_9.16.50-1~deb11u5.debian.tar.xz
 52b813b553dc045d74886f393ae6f510 6389 net optional bind9_9.16.50-1~deb11u5_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEXQGHuUCiRbrXsPVqADoaLapBCF8FAmncmusACgkQADoaLapB
CF/R/A//UmTLiqxlInYb82SuqPfwYmvpb7AaccMWv8EyDWZ/fSLTma+SdtMWPbOl
0448Y5g5WzmCnmfCt4fcihhTYMMRQLVT/GdZHvgcti0p1OH0ls64do6YQ8pqyBwv
Pbw7Ku+2uoQgXnWnGzczWZ8RdnaWx2DNrjDwqLi18HI1Qn31vs8K42wrZ/YvF0wh
+LP2e5WCWX/hU7FAkSU94FTFVzaStcEdI5N77AUttpg5zrSyO3+4JocOCRIUWPwO
A/oL/9bfwRF5PjT+VeIbAjHE1QRomLC0S/8w/H/2cSj7K/0Nxw3VaxvVBqDPrsMk
zaNnnazwswYPFu44V5Ja3b8aLEkYWFeBm9/b2v2ksCrVMv3s2totl0i0meUr+3vM
0VbRc0Gy3Z1mM42QF5Z/sVmMhbK65RUzfIBJ6INnNzm/yXxFpmxbE8MTYz01cDe4
ZEaX5nF68Kt3Rd0vH5jmdqVH5gDdbMNwhSRKmSQyanRJslqUpgD68wm1wL3OOPXd
4eEx0LUWzntMVZ0RVrbRl1nwYBnSYz5oL/gf3axZyFfn5PHT6LfaAxuYryMIcYsD
J6huNmKLBvBNobtnpagJCcczlOK1EH6z4qT89EwOxJEkQDUIok1AIcuRY7HxsUmR
lfqbjGu88LZMlEVOTTtb8mQU9uSDiiSeii9JmHPoQRVYvjEzMGg=
=mzvW
-----END PGP SIGNATURE-----

News for package bind9