Bug#876315: marked as done (CVE-2017-14339)

2017-10-19 Thread Debian Bug Tracking System 
Your message dated Thu, 19 Oct 2017 17:33:15 +
with message-id 
and subject line Bug#876315: fixed in yadifa 2.2.3-1+deb9u1
has caused the Debian Bug report #876315,
regarding CVE-2017-14339
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
876315: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876315
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: yadifa
Severity: grave
Tags: security

Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14339

Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: yadifa
Source-Version: 2.2.3-1+deb9u1

We believe that the bug you reported is fixed in the latest version of
yadifa, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 876...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Markus Schade  (supplier of updated yadifa package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Wed, 18 Oct 2017 16:12:17 CEST
Source: yadifa
Binary: yadifa libyadifa-dev
Architecture: source amd64
Version: 2.2.3-1+deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Markus Schade 
Changed-By: Markus Schade 
Description:
 libyadifa-dev - development libraries and header files for YADIFA
 yadifa - Internet Domain Name Server
Closes: 876315
Changes:
 yadifa (2.2.3-1+deb9u1) stretch-security; urgency=medium
 .
   * Fixes an issue where a maliciously crafted message may block the server.
 Closes: #876315,  CVE-2017-14339
   * Update build dependency for debhelper.
Checksums-Sha256: 
 cb95a0d59a84d2dd84362b59bbb9754dafddce4bae547f7146cd8047cc55811c 1880 
yadifa_2.2.3-1+deb9u1.dsc
 bdf87b9120753416d164d92808f240d80ab1c88b001f6c159f42042bb0ccaab0 17556 
yadifa_2.2.3-1+deb9u1.debian.tar.xz
 7ffbe6cd51f9d11201997402f3814feef4cbbac71b400f4849b27dfc1e7a8983 563880 
libyadifa-dev_2.2.3-1+deb9u1_amd64.deb
 dc5503d65b46edeeb0ebcdca5443f2b280fee4790037947e20c0bc17358d9502 2426180 
yadifa-dbgsym_2.2.3-1+deb9u1_amd64.deb
 42bc660c165369916e9f8b60adaaaf6e4f18c4b73c09bebdec437d258f08e010 5515 
yadifa_2.2.3-1+deb9u1_amd64.buildinfo
 1b2093f37dbdca60dc987828d36aa3d2bc6355be9e2fc1429286714d32c9f5b8 497880 
yadifa_2.2.3-1+deb9u1_amd64.deb
 4a7de1a1c17606c99e1f4ad2f9989268713283cd83eb6edfe0f283fe00a96e46 3672934 
yadifa_2.2.3.orig.tar.gz
Checksums-Sha1: 
 0166bcac6ff3d63a56896652bf42fae41144150b 1880 yadifa_2.2.3-1+deb9u1.dsc
 e9d8ff6a19cea90a0f98d8aee90b8d17f5dc9108 17556 
yadifa_2.2.3-1+deb9u1.debian.tar.xz
 4469f49d042fe7ebbea67a4d07fd1adefe4fef4a 563880 
libyadifa-dev_2.2.3-1+deb9u1_amd64.deb
 85cd3c466c2fb6f937ca3d456994a1e2fb2a4780 2426180 
yadifa-dbgsym_2.2.3-1+deb9u1_amd64.deb
 b38e1c45e41a1ae0a400df7e5d804185c72d8287 5515 
yadifa_2.2.3-1+deb9u1_amd64.buildinfo
 76c5f7f276354a01ba22a545a7127947976e9300 497880 yadifa_2.2.3-1+deb9u1_amd64.deb
 0c36c8aad0b06236f04d7eb3e26865922323677a 3672934 yadifa_2.2.3.orig.tar.gz
Files: 
 b6f68db59bdf62ae009113d112f5bb5b 1880 net optional yadifa_2.2.3-1+deb9u1.dsc
 5d63b2d2c941e761e5d90b00691e3ec1 17556 net optional 
yadifa_2.2.3-1+deb9u1.debian.tar.xz
 6ffdac4f10de20dc0604a2db7039951a 563880 libdevel optional 
libyadifa-dev_2.2.3-1+deb9u1_amd64.deb
 712c8d7c964517b54deb8e9772a80ab7 2426180 debug extra 
yadifa-dbgsym_2.2.3-1+deb9u1_amd64.deb
 6cea9415a5b4e2846829eb52205c7f0d 5515 net optional 
yadifa_2.2.3-1+deb9u1_amd64.buildinfo
 f90408859fde446c8a153ba374ecb565 497880 net optional 
yadifa_2.2.3-1+deb9u1_amd64.deb
 5684ee4e7cdddbd241f2918fd35c4ed3 3672934 net optional yadifa_2.2.3.orig.tar.gz

-BEGIN PGP SIGNATURE-

iQIcBAEBCAAGBQJZ52FGAAoJEPNPCXROn13ZqqYQAIne+77l49WJ+uWE0YT/ZZ0p
+z3FWdCdDYyk4VphmT+Oz1442qUC56oUJs+2gr+R4H77EDD+5cPMOasfFBkcafPI
3V+lRsqVDuyJuT4TnvxdqDLdjYeeiM1NmGrhifQkfmoxo3haGDjzBenMj7PBGMaY
D7kUd3TYsPEj8egMPTyqGz0Q1rbj2yWU79//7puSHd30YiYCqk0eFWBmdCfx8HZt
temsAzjV9USe/k4A6/XGk8JKk3r/jOxn39OuYfVL6Slku3R8wYRyRAf1xQVyYR2l
Jq9x5HX/1cBNxvLrJAfvQXLx22welhVPvdxrBLR6LUHznoG2gqExLJT2bxXeNxKq
ZpqknzN1oVOSnvaGxEZ3YGDu7Jmg8XbGpY/YVHteJXlPLH3t7QJ/SQq2B4ibmJtb

Bug#876315: marked as done (CVE-2017-14339)

2017-10-18 Thread Debian Bug Tracking System 
Your message dated Wed, 18 Oct 2017 15:15:20 +
with message-id 
and subject line Bug#876315: fixed in yadifa 2.2.6-1
has caused the Debian Bug report #876315,
regarding CVE-2017-14339
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
876315: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876315
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: yadifa
Severity: grave
Tags: security

Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14339

Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: yadifa
Source-Version: 2.2.6-1

We believe that the bug you reported is fixed in the latest version of
yadifa, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 876...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Markus Schade  (supplier of updated yadifa package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Thu, 21 Sep 2017 11:59:20 +0200
Source: yadifa
Binary: yadifa libyadifa-dev
Architecture: source
Version: 2.2.6-1
Distribution: unstable
Urgency: medium
Maintainer: Markus Schade 
Changed-By: Markus Schade 
Description:
 libyadifa-dev - development libraries and header files for YADIFA
 yadifa - Internet Domain Name Server
Closes: 876315
Changes:
 yadifa (2.2.6-1) unstable; urgency=medium
 .
   * New upstream version 2.2.6
 Closes: #876315, CVE-2017-14339
   * Refreshed no-compiledate patches
   * Update build dependency for debhelper
Checksums-Sha1:
 b27890a41c8a1757cbbd0efba34a65f411ff0eaf 1852 yadifa_2.2.6-1.dsc
 a6639bde95d7d4f7a9a04ae98d7031e85af7372c 3674737 yadifa_2.2.6.orig.tar.gz
 ca9dd82f4ac95f98deeeaf8c58de8d2ed70017d6 16856 yadifa_2.2.6-1.debian.tar.xz
Checksums-Sha256:
 4bf81b34ddabf4153478fcd495c20fcc99a6b20e496e30173ed29562319c0f61 1852 
yadifa_2.2.6-1.dsc
 d7c42e42a24b613a8a028bb746e45e5c588ac53a35cc7e91655c7c595c192a10 3674737 
yadifa_2.2.6.orig.tar.gz
 b2d9e2a97aeb41c4e96bf04cd05fec015c329e78acb81dadc16ca24acf9aefbf 16856 
yadifa_2.2.6-1.debian.tar.xz
Files:
 ad19acd7d94e6e6325dc9fac12982122 1852 net optional yadifa_2.2.6-1.dsc
 efd0ac059358ac01a6f508288df01a61 3674737 net optional yadifa_2.2.6.orig.tar.gz
 33a137775e10d0740caec4be88a60e0c 16856 net optional 
yadifa_2.2.6-1.debian.tar.xz

-BEGIN PGP SIGNATURE-
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=vKis
-END PGP SIGNATURE End Message ---