-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 29 Jan 2018 21:30:17 +0100 Source: unbound Binary: unbound unbound-anchor unbound-host libunbound2 libunbound-dev python-unbound Architecture: source amd64 Version: 1.4.17-3+deb7u3 Distribution: wheezy-security Urgency: high Maintainer: Robert S. Edmonds <edmonds@debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: libunbound-dev - static library, header files, and docs for libunbound libunbound2 - library implementing DNS resolution and validation python-unbound - library implementing DNS resolution and validation (Python bindin unbound - validating, recursive, caching DNS resolver unbound-anchor - utility to securely fetch the root DNS trust anchor unbound-host - reimplementation of the 'host' command Changes: unbound (1.4.17-3+deb7u3) wheezy-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix CVE-2017-15105: Ralph Dolmans and Karst Koymans found a flaw in the way unbound validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence (NXDOMAIN answer) of an existing wildcard record, or trick unbound into accepting a NODATA proof. For more information please refer to the upstream advisory at https://unbound.net/downloads/CVE-2017-15105.txt. Checksums-Sha1: 7405867ed25924e857df02a6352dcb807b902e6a 2464 unbound_1.4.17-3+deb7u3.dsc 10ac9dd72c51702eddca7d51759e6a970ec01e13 31007 unbound_1.4.17-3+deb7u3.debian.tar.gz 84b1ab04f44d47875b232db21cb064fe992b7323 676160 unbound_1.4.17-3+deb7u3_amd64.deb 5f0c656b04fa8a18a8d1b6a9a915f536174cea02 92998 unbound-anchor_1.4.17-3+deb7u3_amd64.deb 77f737cb9610d99e718f6bc2b25fd0259451af85 81996 unbound-host_1.4.17-3+deb7u3_amd64.deb dac9822e45a217729caec0691e28378f9e1d6400 310252 libunbound2_1.4.17-3+deb7u3_amd64.deb 5cc2c35ba1a315c89803636e64952e17a1d85268 3486224 libunbound-dev_1.4.17-3+deb7u3_amd64.deb 8f5e1e0d72c5e882f98d67541bcbbc80971c70af 114020 python-unbound_1.4.17-3+deb7u3_amd64.deb Checksums-Sha256: 75782ab44df6f402de156bdbec181186a263a54eaa5b4d12319ca5e37673430d 2464 unbound_1.4.17-3+deb7u3.dsc 7d7307e3cfd068fa48bee71481c2af7974d09b57f99e2de6daeab12bdfdd3a50 31007 unbound_1.4.17-3+deb7u3.debian.tar.gz ad169d1956d60e61d18beee89b2c842498e7fbd5ea351fd403a0b28088375090 676160 unbound_1.4.17-3+deb7u3_amd64.deb b458112b35d95db10c47c75ab83c1f7724fd3653d36328ca82c165d71d983b7b 92998 unbound-anchor_1.4.17-3+deb7u3_amd64.deb d43cb6d3c49e2f0b27a122b2f8c5213f5056a647234cf454ac8c54b2a5a1c838 81996 unbound-host_1.4.17-3+deb7u3_amd64.deb 5a99a674b00785ff873610c9ba0f5e0667e29c38f439b42c4cc0b4f1901716b3 310252 libunbound2_1.4.17-3+deb7u3_amd64.deb 657c0a83c81d97d6691c57712cf2ccb0bf32414169ba6169eb22fc7ba753a3b0 3486224 libunbound-dev_1.4.17-3+deb7u3_amd64.deb 5b5cff469922c86e100bf70e307fd4d70cfd1ce90d14fcadb5c9d8f31b0c8216 114020 python-unbound_1.4.17-3+deb7u3_amd64.deb Files: 60ae3dc0113fa9f5376a69f31c980607 2464 net optional unbound_1.4.17-3+deb7u3.dsc 0f83873fd7882bc7d772be5ed58c7f07 31007 net optional unbound_1.4.17-3+deb7u3.debian.tar.gz d0fe87b41ad64bd553854e84672fd174 676160 net optional unbound_1.4.17-3+deb7u3_amd64.deb 1999de724a3574000232d60507f799a8 92998 net optional unbound-anchor_1.4.17-3+deb7u3_amd64.deb dff537be1f758fc87b3839898f21ce31 81996 net optional unbound-host_1.4.17-3+deb7u3_amd64.deb 899127f58579221c41317825d45a49d2 310252 net optional libunbound2_1.4.17-3+deb7u3_amd64.deb b4e908ca440c7e7a4e251a8f31a70752 3486224 libdevel optional libunbound-dev_1.4.17-3+deb7u3_amd64.deb e7a9358ddec011e4a432b1222f7950bc 114020 python optional python-unbound_1.4.17-3+deb7u3_amd64.deb -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAlpwgN9fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkNcsP+QG2pTQvPEvcTwLM5tH0DpW+KFB4Ofk6SivG 5PnABFobxFM+UrE7LocIN9Gxxs2GwQsYcJ/cgKDGEg1pB4z0KNSV/iVLpoR87RfW 6lIM3CeO8IGXcCj0+S89b9gusjeiVKjEgU4B/DtMhSIr7cqs7qW9N5QciJcnpsId y57SLfBigs8O4V3T+tJAkOsQAXGNjVSPGnBoRewP6tpSY/6GB4RkAPFa4J/XKCnO OkDrFPpbEt1M7/+7l452Yz7EqeGmdvBoYjvFSanhyruHMcR0LZLOZubPwo0BcrDs v6ARxoWz/e5qwfphDMcjmgEx/8T82a/DuDrcLXw9LyHJ3LjB4Xvospx568z7OWIL KyBG1LnBNHknSETtV3kMAqJ2xRp9BZm/3gnoHRhH8rhHsxD7B+P0Dk2XlgOxtRl0 9I3ltNPbfuf4z20wBMOrbN42wltgrgvwBBA3DQ3aGfIATLAk2IFfX1n7w8BfVwE3 /XYYctpOD2mWnWe8UU4Zs6JzBfatgybctm4SGWfWnQ3QK2gww6DJDFx39o+t9yxG iN3dhNh1ISKFnOZqbb73FI6H0fYc0F9ciSGRDqay4o1RcUvW2Pg58S6/476pBOjJ RJ7G+ykMySSN/lFv8MP6iNrLLeX5/gMxi8TDbMl18JA6cXTmxYzmh4kN/Y2HsJmA wMrbyaDS =czoC -----END PGP SIGNATURE-----
