-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : bind9 Version : 1:9.9.5.dfsg-9+deb8u17 CVE ID : CVE-2018-5745 CVE-2019-6465
Two issues have been found in bind9, the Internet Domain Name Server. CVE-2019-6465 Zone transfer for DLZs are executed though not permitted by ACLs. CVE-2018-5745 Avoid assertion and thus causing named to deliberately exit when a trust anchor's key is replaced with a key which uses an unsupported algorithm. For Debian 8 "Jessie", these problems have been fixed in version 1:9.9.5.dfsg-9+deb8u17. We recommend that you upgrade your bind9 packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAlx4TodfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7 WEeSWhAAiB7MEpxu/nqcKlF5+Ho/t+bnvkNaQnLyiamw4Gsl/gc9DwYQHs8rhdxQ qupT/JOdmnWv7VzIEaSZ13j6jUYgHSJs5bFJ4JMpPnh6Ag4eQMyF3spbsMDDYO6r IYeO+4qQzjhDZ22f3jo3iAOr5AN4h9MXx3mfYdJsWvoQw4S4jzGzbQwFy/3pqR8i 9GHimgOc9G4lnUFesCXzcQSroLslWEEIDQPFoyt7RBUD2Yc6pNnGsGZOpiPW/257 B8TgFEAtTaHvP+dPZ9R91EzqLR12rnrPu2A1vbzbZ2PhiBnQC1h5mOxV24whs51y yr98TBdlb8BhMMErcPSbvHOV9d+3y3pt36UJx9B8iikCCm5LCodD8XBo82Psf9qj ESccsvhXzDFA/zstOSkddgymNF8mi02BfEGmvWeBw/xNk72UREeuUwD6b3uzmIwj XKQXGTQ0ej48WgluxxnoIGDlTNkAQ0ySI3Nx88EaIFC1fOQZPvwStw3NOO77wGBi JuWXO7SLabEDSBdlQdF2n9TwnQuF9bwOz83HvczF0tvcV2GtDE38N74a0KWMvYsS 8qVBvFnWLhM+d2/Zs7G96M3wbw1Hv06yaewvruoiEKkPqTqJPtu9Xj2eDqoYyEwX ZbJE0aw7VKc9Nz6zBsP56W0nH63p72ozf3k55pyKwkQUXmXzIMc= =Qq9W -----END PGP SIGNATURE-----