Your message dated Thu, 09 Mar 2017 23:17:27 +0000
with message-id <[email protected]>
and subject line Bug#855520: fixed in bind9 1:9.9.5.dfsg-9+deb8u10
has caused the Debian Bug report #855520,
regarding bind9: CVE-2017-3135: Assertion failure when using DNS64 and RPZ can
lead to crash
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
855520: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855520
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: bind9
Version: 1:9.9.5.dfsg-9
Severity: grave
Tags: patch security upstream
Hi,
the following vulnerability was published for bind9.
CVE-2017-3135[0]:
Assertion failure when using DNS64 and RPZ can lead to crash
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2017-3135
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: bind9
Source-Version: 1:9.9.5.dfsg-9+deb8u10
We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Gilbert <[email protected]> (supplier of updated bind9 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 26 Feb 2017 00:03:04 +0000
Source: bind9
Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-90
libdns100 libisc95 liblwres90 libisccc90 libisccfg90 dnsutils lwresd
libbind-export-dev libdns-export100 libdns-export100-udeb libisc-export95
libisc-export95-udeb libisccfg-export90 libisccfg-export90-udeb libirs-export91
libirs-export91-udeb
Architecture: source all i386
Version: 1:9.9.5.dfsg-9+deb8u10
Distribution: jessie-security
Urgency: medium
Maintainer: LaMont Jones <[email protected]>
Changed-By: Michael Gilbert <[email protected]>
Description:
bind9 - Internet Domain Name Server
bind9-doc - Documentation for BIND
bind9-host - Version of 'host' bundled with BIND 9.X
bind9utils - Utilities for BIND
dnsutils - Clients provided with BIND
host - Transitional package
libbind-dev - Static Libraries and Headers used by BIND
libbind-export-dev - Development files for the exported BIND libraries
libbind9-90 - BIND9 Shared Library used by BIND
libdns-export100 - Exported DNS Shared Library
libdns-export100-udeb - Exported DNS library for debian-installer (udeb)
libdns100 - DNS Shared Library used by BIND
libirs-export91 - Exported IRS Shared Library
libirs-export91-udeb - Exported IRS library for debian-installer (udeb)
libisc-export95 - Exported ISC Shared Library
libisc-export95-udeb - Exported ISC library for debian-installer (udeb)
libisc95 - ISC Shared Library used by BIND
libisccc90 - Command Channel Library used by BIND
libisccfg-export90 - Exported ISC CFG Shared Library
libisccfg-export90-udeb - Exported ISC CFG library for debian-installer (udeb)
libisccfg90 - Config File Handling Library used by BIND
liblwres90 - Lightweight Resolver Library used by BIND
lwresd - Lightweight Resolver Daemon
Closes: 855520 855540
Changes:
bind9 (1:9.9.5.dfsg-9+deb8u10) jessie-security; urgency=medium
.
* Fix regression caused by the fix for CVE-2016-8864 (closes: #855540).
* Fix CVE-2017-3135: a malicously crafted query can cause named to crash if
both DNS64 and RPZ are being used (closes: #855520).
Checksums-Sha1:
e268fb7919a821489c3aa5f595600b2ad7451da2 4160 bind9_9.9.5.dfsg-9+deb8u10.dsc
ad5ec0a097a6465139de06375c41d1038a9959a3 125522
bind9_9.9.5.dfsg-9+deb8u10.diff.gz
5320ee864da0365170f0f3a2d158d8008f423607 339794
bind9-doc_9.9.5.dfsg-9+deb8u10_all.deb
d6963c67f22f28d0917c7b626d18977f4df11786 23624
host_9.9.5.dfsg-9+deb8u10_all.deb
dabd083a8c4b555fa70b7968387488141e3aaa79 331886
bind9_9.9.5.dfsg-9+deb8u10_i386.deb
a89532605b7bbbe96e00f5acf98cc2a2a9c6c6fd 170788
bind9utils_9.9.5.dfsg-9+deb8u10_i386.deb
17bd7b57b95731ba032d160965bfbad81ec4dd30 72422
bind9-host_9.9.5.dfsg-9+deb8u10_i386.deb
9e01cdec3d6eaeab0721f9324be91594abd1d5f7 1340634
libbind-dev_9.9.5.dfsg-9+deb8u10_i386.deb
00d86367a66a349778f168b8b0a20ceaaac3f35a 45614
libbind9-90_9.9.5.dfsg-9+deb8u10_i386.deb
3bef7629dfa507961a741cb5ae433b99b9cc5f61 735102
libdns100_9.9.5.dfsg-9+deb8u10_i386.deb
5162b9f29ae1ba37e7ef1a3182f84c21e116813f 177680
libisc95_9.9.5.dfsg-9+deb8u10_i386.deb
8a1bd5c21427ed59928cb314b420878025be0f1b 55012
liblwres90_9.9.5.dfsg-9+deb8u10_i386.deb
63e9650c355db21daafe7d6aba67ecc2deb0b9d9 37688
libisccc90_9.9.5.dfsg-9+deb8u10_i386.deb
20d61acc94336a168174edc9c8c9593ed1135c28 57612
libisccfg90_9.9.5.dfsg-9+deb8u10_i386.deb
7a903697360ec1a060e94d2e7bcae431d634a5fe 125084
dnsutils_9.9.5.dfsg-9+deb8u10_i386.deb
f232222987e22580cac6bd2c3059af418cdf0820 246806
lwresd_9.9.5.dfsg-9+deb8u10_i386.deb
f51fa957318040dc8ad63bd504e63f472a13f941 888418
libbind-export-dev_9.9.5.dfsg-9+deb8u10_i386.deb
3b3e56a33ffd571928786f33893392fcfcec642a 487110
libdns-export100_9.9.5.dfsg-9+deb8u10_i386.deb
ef769f509138399d90ead462b4da9e248f2db12f 463574
libdns-export100-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
79a777a054440d82a9f9b8bb4cdd286938995e08 146468
libisc-export95_9.9.5.dfsg-9+deb8u10_i386.deb
d61465fbc36f2caaffd7af0db4471bc034ea5f60 122938
libisc-export95-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
cfc16d5d5ae2c881f9ddab811d84a8d4509e802c 42670
libisccfg-export90_9.9.5.dfsg-9+deb8u10_i386.deb
85efe2e84340970a2e85d8106e4239be762c9928 19418
libisccfg-export90-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
6cdbeb1896692868e8c454262e712380d2dc1cf1 39752
libirs-export91_9.9.5.dfsg-9+deb8u10_i386.deb
a80080bbef9fe54fd0bb72e809f38320e141caef 16466
libirs-export91-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
Checksums-Sha256:
4252c3666eb75a9dbdd96ad6dace93003c740956f78bf921f699be2c322fa2fc 4160
bind9_9.9.5.dfsg-9+deb8u10.dsc
20fb1189264435d59cd3086392735171bfaa1123bc136339a985c67a8245d57a 125522
bind9_9.9.5.dfsg-9+deb8u10.diff.gz
564b004d08b5ad97fb689dd85f95ec5f5888a9a82880507801e6f298a2bac9c5 339794
bind9-doc_9.9.5.dfsg-9+deb8u10_all.deb
2d6ed02fbd3997faca919acf015ae250ab611fe9dfb3fe2fb977b861cf3673d9 23624
host_9.9.5.dfsg-9+deb8u10_all.deb
77c8a4a4d050200b189f51f9e130736e4925a6d5383a51e1ab6caa232e5a1b6f 331886
bind9_9.9.5.dfsg-9+deb8u10_i386.deb
9f55b18d545a94c1078b87cb52bb4cdaaa6931b9c0b8833adb4e6062f24211e2 170788
bind9utils_9.9.5.dfsg-9+deb8u10_i386.deb
d35e52943efdf7129b8f16633398491490dd03755805c04587f0ef6204bce231 72422
bind9-host_9.9.5.dfsg-9+deb8u10_i386.deb
21cdc2e55fae13e7ae3f2eee80f2e7a8ab4dc77bff823f412f8ceb7d64f8bedb 1340634
libbind-dev_9.9.5.dfsg-9+deb8u10_i386.deb
4c8e9237e3d7e1236f90f79a90a2e7fe708d2abc7cc565c7273df5e736893b37 45614
libbind9-90_9.9.5.dfsg-9+deb8u10_i386.deb
c36ea730687ee819c0991a09a705f54cac3dbc2946f9017068bb3eda905d57ca 735102
libdns100_9.9.5.dfsg-9+deb8u10_i386.deb
a5ccfe5f71e8c33ff45114c2154fe9120bb7286dee81e56ab7c510b80c00db41 177680
libisc95_9.9.5.dfsg-9+deb8u10_i386.deb
17e5962fff79ffa1e18d2a8ab4926eac870c7823b1bedacbafef4a5a156a9353 55012
liblwres90_9.9.5.dfsg-9+deb8u10_i386.deb
4740575760a62dbbd39342df3357a8557f25befd442a7bf5dd2cb3e97526c6e2 37688
libisccc90_9.9.5.dfsg-9+deb8u10_i386.deb
c1d5d61b7c67ef780c3212f498810ff1c7b0920f19578974491f29e3949fc3eb 57612
libisccfg90_9.9.5.dfsg-9+deb8u10_i386.deb
06bfa193271df3c23771f6ed2d092c41737b23915a254d58993f13a1b0af4bc7 125084
dnsutils_9.9.5.dfsg-9+deb8u10_i386.deb
02c93a5533826a0f1b76542df7d1ec4bfe4da19c3b01f5897ea7e71ccf9f2c58 246806
lwresd_9.9.5.dfsg-9+deb8u10_i386.deb
5554f13de7e792a4c6bc769e7c59adbec3028eeb11e280bbde6c183ced5e9797 888418
libbind-export-dev_9.9.5.dfsg-9+deb8u10_i386.deb
28b452a47ecff976ba66272914be23e4f6270f0c75b138167142eb0afd32ab01 487110
libdns-export100_9.9.5.dfsg-9+deb8u10_i386.deb
aa7b71396b3c356dea009522a6d82ee36981df13cad1cce896b44681b3235374 463574
libdns-export100-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
8b98adf664b57764a09cffac68d6fa275e14ee4993da16ddb07e7fe22d6a8e32 146468
libisc-export95_9.9.5.dfsg-9+deb8u10_i386.deb
0920c703bef04d206ab834a5d1a4b6a7d8806711a0b64856aab9b96a44055d6a 122938
libisc-export95-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
51f14122fc09f4805ad857dc25ec460954c0beb2ba1d0da874d9356a9ddc1060 42670
libisccfg-export90_9.9.5.dfsg-9+deb8u10_i386.deb
dfb869816b9741df1808952c6fe870abac69e826680f92ffb2df9b30df015578 19418
libisccfg-export90-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
0c51637ff0edb357bd44c2bf460ef5efb86b17d22fa8e2dd6558e2eec20c8e04 39752
libirs-export91_9.9.5.dfsg-9+deb8u10_i386.deb
7cceae09084c999869450c7e31d3701237f7e2dceb6b43921e1c75c90c9b7823 16466
libirs-export91-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
Files:
379976d3179e5c24b56ef5ca1c6e48d4 4160 net optional
bind9_9.9.5.dfsg-9+deb8u10.dsc
f06af75e1c71b69d330257034863d677 125522 net optional
bind9_9.9.5.dfsg-9+deb8u10.diff.gz
1470fe7e4fd51cbe45c714d09a51af9e 339794 doc optional
bind9-doc_9.9.5.dfsg-9+deb8u10_all.deb
9eba7d30cfccf072e2302a8ce91e2571 23624 net standard
host_9.9.5.dfsg-9+deb8u10_all.deb
f548dde751fd9343d0b2de195165c124 331886 net optional
bind9_9.9.5.dfsg-9+deb8u10_i386.deb
fc5f88030878696c89e6b0f5dacb8a3f 170788 net optional
bind9utils_9.9.5.dfsg-9+deb8u10_i386.deb
c2fff715ebae116f3ca762f522c7b013 72422 net standard
bind9-host_9.9.5.dfsg-9+deb8u10_i386.deb
448d300b58eba6f98c63162c44a0c237 1340634 libdevel optional
libbind-dev_9.9.5.dfsg-9+deb8u10_i386.deb
ef0201130261c8f8f0fc4685e1ab30c0 45614 libs standard
libbind9-90_9.9.5.dfsg-9+deb8u10_i386.deb
8a9027bac9d15fe49fafcac37e1f1190 735102 libs standard
libdns100_9.9.5.dfsg-9+deb8u10_i386.deb
f68b451a85294c1808087dcd91f4a711 177680 libs standard
libisc95_9.9.5.dfsg-9+deb8u10_i386.deb
fb77e9058c017a8f44711cf33fa0c099 55012 libs standard
liblwres90_9.9.5.dfsg-9+deb8u10_i386.deb
7bef050355dc11174b4166e465122707 37688 libs optional
libisccc90_9.9.5.dfsg-9+deb8u10_i386.deb
2f0e39cc4cc66a1053b5e4a6e84ff6ab 57612 libs optional
libisccfg90_9.9.5.dfsg-9+deb8u10_i386.deb
60a4207cdd3be88c2d9cfb81a5ec2e01 125084 net standard
dnsutils_9.9.5.dfsg-9+deb8u10_i386.deb
3413635b3cb91ede30639d40561504e9 246806 net optional
lwresd_9.9.5.dfsg-9+deb8u10_i386.deb
e96b6ba51826a5552e1994abb3909767 888418 libdevel optional
libbind-export-dev_9.9.5.dfsg-9+deb8u10_i386.deb
f491b1eacd1feb5806b29a07c1704759 487110 libs optional
libdns-export100_9.9.5.dfsg-9+deb8u10_i386.deb
5f8fa9f9fe27e98153af2c23d3c710a8 463574 debian-installer optional
libdns-export100-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
5d9b2a87a2b70980d3586fec4d124d47 146468 libs optional
libisc-export95_9.9.5.dfsg-9+deb8u10_i386.deb
1c43cd2f1a5c015656fc94ad27193bab 122938 debian-installer optional
libisc-export95-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
d8f664bd9fc00abc71ab15adc05b2ab4 42670 libs optional
libisccfg-export90_9.9.5.dfsg-9+deb8u10_i386.deb
c06488719dac1b78867446cb5f22c576 19418 debian-installer optional
libisccfg-export90-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
7fd3db2ba183167b65ce8df086298f4d 39752 libs optional
libirs-export91_9.9.5.dfsg-9+deb8u10_i386.deb
4b621647fcb313168a52b3efc4d3377f 16466 debian-installer optional
libirs-export91-udeb_9.9.5.dfsg-9+deb8u10_i386.udeb
-----BEGIN PGP SIGNATURE-----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=l0j/
-----END PGP SIGNATURE-----
--- End Message ---
