tags 717936 + pending thanks Hi LaMont, hi Bdale
I straight uploaded bind9 (versioned 1:9.8.4.dfsg.P1-6+nmu3) also to the archive. DSA for bind was already released, and exploiting this issue was already seen[1], hope this is okay also for you, to have the fix asap also in unstable version of bind9. [1] https://kb.isc.org/article/AA-01015 Regards, Salvatore
diff -u bind9-9.8.4.dfsg.P1/debian/changelog bind9-9.8.4.dfsg.P1/debian/changelog --- bind9-9.8.4.dfsg.P1/debian/changelog +++ bind9-9.8.4.dfsg.P1/debian/changelog @@ -1,3 +1,12 @@ +bind9 (1:9.8.4.dfsg.P1-6+nmu3) unstable; urgency=high + + * Non-maintainer upload by the Security Team. + * CVE-2013-4854: A specially crafted query that includes malformed rdata can + cause named to terminate with an assertion failure while rejecting the + malformed query. (Closes: #717936). + + -- Salvatore Bonaccorso <car...@debian.org> Sat, 27 Jul 2013 10:24:07 +0200 + bind9 (1:9.8.4.dfsg.P1-6+nmu2) unstable; urgency=medium * Non-maintainer upload. only in patch2: unchanged: --- bind9-9.8.4.dfsg.P1.orig/lib/dns/rdata/generic/keydata_65533.c +++ bind9-9.8.4.dfsg.P1/lib/dns/rdata/generic/keydata_65533.c @@ -176,7 +176,7 @@ UNUSED(options); isc_buffer_activeregion(source, &sr); - if (sr.length < 4) + if (sr.length < 16) return (ISC_R_UNEXPECTEDEND); isc_buffer_forward(source, sr.length);