Debian Package Tracker

From: Salvatore Bonaccorso <carnil@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted quagga 1.1.1-3+deb9u2 (source) into proposed-updates->stable-new, proposed-updates
Date: Fri, 23 Feb 2018 11:34:36 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 13 Feb 2018 22:54:57 +0100
Source: quagga
Binary: quagga quagga-core quagga-doc quagga-bgpd quagga-isisd quagga-ospf6d quagga-ospfd quagga-pimd quagga-ripd quagga-ripngd
Architecture: source
Version: 1.1.1-3+deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: Scott Leggett <scott@sl.id.au>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description: 
 quagga     - network routing daemons (metapackage)
 quagga-bgpd - BGP4/BGP4+ routing daemon
 quagga-core - network routing daemons (core abstraction layer)
 quagga-doc - network routing daemons (documentation)
 quagga-isisd - IS-IS routing daemon
 quagga-ospf6d - OSPF6 routing daemon
 quagga-ospfd - OSPF routing daemon
 quagga-pimd - PIM routing daemon
 quagga-ripd - RIPv1 routing daemon
 quagga-ripngd - RIPng routing daemon
Changes:
 quagga (1.1.1-3+deb9u2) stretch-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * bgpd/security: invalid attr length sends NOTIFY with data overrun
     (CVE-2018-5378)
     Security issue: Quagga-2018-0543
   * bgpd/security: Fix double free of unknown attribute (CVE-2018-5379)
     Security issue: Quagga-2018-1114
   * bgpd/security: debug print of received NOTIFY data can over-read msg array
     (CVE-2018-5380)
     Security issue: Quagga-2018-1550
   * bgpd/security: fix infinite loop on certain invalid OPEN messages
     (CVE-2018-5381)
     Security issue: Quagga-2018-1975
Checksums-Sha1: 
 d5e9cb8ff722946a89ba0ce6c5a58ecc5d9b7b6a 2766 quagga_1.1.1-3+deb9u2.dsc
 ed5e9a4491ffa5187e0d9ce60fd5d978162df9e9 35892 quagga_1.1.1-3+deb9u2.debian.tar.xz
Checksums-Sha256: 
 2e6beea8dfe0224435e3d296f855116b935aebff2aaceea60f8ffa06a75dfd50 2766 quagga_1.1.1-3+deb9u2.dsc
 349490915d20f241de49949547abec4b96f7790ce0e6daf39c3cdbd957b20f55 35892 quagga_1.1.1-3+deb9u2.debian.tar.xz
Files: 
 9cba8d936ace39c105307683bc7ca15a 2766 net optional quagga_1.1.1-3+deb9u2.dsc
 b2f86aef1939f9c37ca98873b69f495d 35892 net optional quagga_1.1.1-3+deb9u2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=J608
-----END PGP SIGNATURE-----
News for package quagga
