Bug#851063: marked as done (bind9: CVE-2016-9147: An error handling a query response containing inconsistent DNSSEC information could cause an assertion failure)

2017-01-21 Thread Debian Bug Tracking System 
Your message dated Sun, 22 Jan 2017 07:33:33 +
with message-id 
and subject line Bug#851063: fixed in bind9 1:9.10.3.dfsg.P4-11
has caused the Debian Bug report #851063,
regarding bind9: CVE-2016-9147: An error handling a query response containing 
inconsistent DNSSEC information could cause an assertion failure
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
851063: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851063
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: bind9
Version: 1:9.9.5.dfsg-4
Severity: grave
Tags: upstream security
Justification: user security hole

Hi,

the following vulnerability was published for bind9.

CVE-2016-9147[0]:
|An error handling a query response containing inconsistent DNSSEC
|information could cause an assertion failure

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-9147
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9147
[1] https://kb.isc.org/article/AA-01440/0

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: bind9
Source-Version: 1:9.10.3.dfsg.P4-11

We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 851...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Gilbert  (supplier of updated bind9 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Thu, 19 Jan 2017 04:03:28 +
Source: bind9
Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-140 
libdns162 libirs141 libisc160 liblwres141 libisccc140 libisccfg140 dnsutils 
lwresd libbind-export-dev libdns-export162 libdns-export162-udeb 
libisc-export160 libisc-export160-udeb libisccfg-export140 libisccc-export140 
libisccc-export140-udeb libisccfg-export140-udeb libirs-export141 
libirs-export141-udeb
Architecture: source
Version: 1:9.10.3.dfsg.P4-11
Distribution: unstable
Urgency: medium
Maintainer: LaMont Jones 
Changed-By: Michael Gilbert 
Description:
 bind9  - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 bind9utils - Utilities for BIND
 dnsutils   - Clients provided with BIND
 host   - Transitional package
 libbind-dev - Static Libraries and Headers used by BIND
 libbind-export-dev - Development files for the exported BIND libraries
 libbind9-140 - BIND9 Shared Library used by BIND
 libdns-export162 - Exported DNS Shared Library
 libdns-export162-udeb - Exported DNS library for debian-installer (udeb)
 libdns162  - DNS Shared Library used by BIND
 libirs-export141 - Exported IRS Shared Library
 libirs-export141-udeb - Exported IRS library for debian-installer (udeb)
 libirs141  - DNS Shared Library used by BIND
 libisc-export160 - Exported ISC Shared Library
 libisc-export160-udeb - Exported ISC library for debian-installer (udeb)
 libisc160  - ISC Shared Library used by BIND
 libisccc-export140 - Command Channel Library used by BIND
 libisccc-export140-udeb - Command Channel Library used by BIND (udeb)
 libisccc140 - Command Channel Library used by BIND
 libisccfg-export140 - Exported ISC CFG Shared Library
 libisccfg-export140-udeb - Exported ISC CFG library for debian-installer (udeb)
 libisccfg140 - Config File Handling Library used by BIND
 liblwres141 - Lightweight Resolver Library used by BIND
 lwresd - Lightweight Resolver Daemon
Closes: 828082 831796 839010 842858 848519 851062 851063 851065
Changes:
 bind9 (1:9.10.3.dfsg.P4-11) unstable; urgency=medium
 .
   * Fix some lintian warnings.
   * Add lsb-base dependency to lwresd (closes: #848519).
   * Fix CVE-2016-2775: crash in lwresd due to a long query name
 (closes: #831796).
   * Fix CVE-2016-2776: maliciously crafted query can cause named to crash
 (closes: #839010).
   *

Bug#851063: marked as done (bind9: CVE-2016-9147: An error handling a query response containing inconsistent DNSSEC information could cause an assertion failure)

2017-01-17 Thread Debian Bug Tracking System 
Your message dated Tue, 17 Jan 2017 15:00:15 +
with message-id 
and subject line Bug#851063: fixed in bind9 1:9.10.4-P5-1
has caused the Debian Bug report #851063,
regarding bind9: CVE-2016-9147: An error handling a query response containing 
inconsistent DNSSEC information could cause an assertion failure
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
851063: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851063
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: bind9
Version: 1:9.9.5.dfsg-4
Severity: grave
Tags: upstream security
Justification: user security hole

Hi,

the following vulnerability was published for bind9.

CVE-2016-9147[0]:
|An error handling a query response containing inconsistent DNSSEC
|information could cause an assertion failure

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-9147
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9147
[1] https://kb.isc.org/article/AA-01440/0

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: bind9
Source-Version: 1:9.10.4-P5-1

We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 851...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Gilbert  (supplier of updated bind9 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Sun, 15 Jan 2017 06:04:12 +
Source: bind9
Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-140 
libdns165 libirs141 libisc160 liblwres141 libisccc140 libisccfg140 dnsutils 
lwresd libbind-export-dev libdns-export165 libdns-export165-udeb 
libisc-export160 libisc-export160-udeb libisccfg-export140 libisccc-export140 
libisccc-export140-udeb libisccfg-export140-udeb libirs-export141 
libirs-export141-udeb
Architecture: source amd64 all
Version: 1:9.10.4-P5-1
Distribution: experimental
Urgency: medium
Maintainer: LaMont Jones 
Changed-By: Michael Gilbert 
Description:
 bind9  - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 bind9utils - Utilities for BIND
 dnsutils   - Clients provided with BIND
 host   - Transitional package
 libbind-dev - Static Libraries and Headers used by BIND
 libbind-export-dev - Development files for the exported BIND libraries
 libbind9-140 - BIND9 Shared Library used by BIND
 libdns-export165 - Exported DNS Shared Library
 libdns-export165-udeb - Exported DNS library for debian-installer (udeb)
 libdns165  - DNS Shared Library used by BIND
 libirs-export141 - Exported IRS Shared Library
 libirs-export141-udeb - Exported IRS library for debian-installer (udeb)
 libirs141  - DNS Shared Library used by BIND
 libisc-export160 - Exported ISC Shared Library
 libisc-export160-udeb - Exported ISC library for debian-installer (udeb)
 libisc160  - ISC Shared Library used by BIND
 libisccc-export140 - Command Channel Library used by BIND
 libisccc-export140-udeb - Command Channel Library used by BIND (udeb)
 libisccc140 - Command Channel Library used by BIND
 libisccfg-export140 - Exported ISC CFG Shared Library
 libisccfg-export140-udeb - Exported ISC CFG library for debian-installer (udeb)
 libisccfg140 - Config File Handling Library used by BIND
 liblwres141 - Lightweight Resolver Library used by BIND
 lwresd - Lightweight Resolver Daemon
Closes: 828082 830810 831796 839010 842858 851062 851063 851065
Changes:
 bind9 (1:9.10.4-P5-1) experimental; urgency=medium
 .
   * New upstream: 9.10.4-P5
 - Fixes CVE-2016-2775: crash in lwresd due to a long query name
   (closes: #831796).
 - Fixes CVE-2016-2776: maliciously crafted query can cause named to crash
   (closes: #839010).
 - Fixes CVE-2016-6170: improper zone size limits (closes: