-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 09 Apr 2008 21:40:00 +0200 Source: pdns-recursor Binary: pdns-recursor Architecture: source amd64 Version: 3.1.4-1+etch1 Distribution: stable-security Urgency: high Maintainer: Debian PowerDNS Maintainers <powerdns-debian@workaround.org> Changed-By: Florian Weimer <fw@deneb.enyo.de> Description: pdns-recursor - PowerDNS recursor Changes: pdns-recursor (3.1.4-1+etch1) stable-security; urgency=high . * Weak random numbers were used for transaction IDs and source port numbers, simplifying cache poisoning using spoofed upstream server answers. (CVE-2008-1637) Files: e2afc6418e2640188aed92a15d852842 1198 net extra pdns-recursor_3.1.4-1+etch1.dsc e35d774e3282285a59a7f8038a036b61 171270 net extra pdns-recursor_3.1.4.orig.tar.gz 21442fd6cb034c874ae2c353d1bcd968 34268 net extra pdns-recursor_3.1.4-1+etch1.diff.gz ef549047ec6885aa2f1b908442822c5f 418316 net extra pdns-recursor_3.1.4-1+etch1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iQEVAwUBR/0fTb97/wQC1SS+AQKGTQgAqpOL+5OAkEyEsb6/371Y7qFDsRe5E/4K rSHsaDYH4rou2v4Ag5wQRfANVFQTIZ/cNtnhBHJ7wMGkDVTn6N8NLFa7UJLhNIRs 8O09Yt6Tu5dlohgjzpl0kfA09GWOo2HuDAXQ2CBoEoHKmeRtcxl2ugGJuYs5i8X0 hcP3LfPS1U/5UAh57kxliq7irLiHMfxwlKMWf9Z9dHy9tKm1nDQ6u2KQOlJJaJ+O SJxOQsGlROcatyQiZ/2HV5H72lML9OiVWlzL3j2RzUdNkJXTNi0aP1QtdJqdVtc7 nLxcylGeWRv0XI6WZwx9VD5Yqbo4cB6Fr3/3mm/c+0M5OObNa6bRRg== =DRf3 -----END PGP SIGNATURE----- Accepted: pdns-recursor_3.1.4-1+etch1.diff.gz to pool/main/p/pdns-recursor/pdns-recursor_3.1.4-1+etch1.diff.gz pdns-recursor_3.1.4-1+etch1.dsc to pool/main/p/pdns-recursor/pdns-recursor_3.1.4-1+etch1.dsc pdns-recursor_3.1.4-1+etch1_amd64.deb to pool/main/p/pdns-recursor/pdns-recursor_3.1.4-1+etch1_amd64.deb