-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 23 Jul 2024 15:15:18 +0200 Source: bind9 Binary: bind9 bind9-dbgsym bind9-dev bind9-dnsutils bind9-dnsutils-dbgsym bind9-host bind9-host-dbgsym bind9-libs bind9-libs-dbgsym bind9-utils bind9-utils-dbgsym Architecture: arm64 Version: 1:9.16.50-1~deb11u1 Distribution: bullseye-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-03) Changed-By: Ondřej Surý Description: bind9 - Internet Domain Name Server bind9-dev - Static Libraries and Headers used by BIND 9 bind9-dnsutils - Clients provided with BIND 9 bind9-host - DNS Lookup Utility bind9-libs - Shared Libraries used by BIND 9 bind9-utils - Utilities for BIND 9 Changes: bind9 (1:9.16.50-1~deb11u1) bullseye-security; urgency=high . * Backported from BIND 9.18.28 + CVE-2024-1737: It is possible to craft excessively large resource records sets, which have the effect of slowing down database processing. This has been addressed by adding a fixed limit to the number of records that can be stored per name and type in a cache or zone database. + CVE-2024-1737: It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a fixed limit to the number of records that can be stored per name and type in a cache or zone database. + CVE-2024-1975: Validating DNS messages signed using the SIG(0) protocol could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version. + CVE-2024-4076: Due to a logic error, lookups that triggered serving stale data and required lookups in local authoritative zone data could have resulted in an assertion failure. Checksums-Sha1: 9c862c11e941daf3bad67e6b227213c95a781b16 511864 bind9-dbgsym_9.16.50-1~deb11u1_arm64.deb dfbbcaa8e6dd14249ac06c426eb4dc505c58e0e5 1787600 bind9-dev_9.16.50-1~deb11u1_arm64.deb a0e724cdae79a4c6fd7507a8617fb2da2e564985 282432 bind9-dnsutils-dbgsym_9.16.50-1~deb11u1_arm64.deb b65705d339e2a8c21946539bc50e86d81bbbdd22 401512 bind9-dnsutils_9.16.50-1~deb11u1_arm64.deb 1b8d5003677cdce4333e40d80a8230bef0eddb0c 79568 bind9-host-dbgsym_9.16.50-1~deb11u1_arm64.deb 71aaad420761575b34e9a029cbe8dc92dfb2f316 309888 bind9-host_9.16.50-1~deb11u1_arm64.deb f324214b67085fc1eaf615eeed739b1baabe9fbf 3384632 bind9-libs-dbgsym_9.16.50-1~deb11u1_arm64.deb 385034fb1f464db8231f175e45de6c6adaeb0670 1314496 bind9-libs_9.16.50-1~deb11u1_arm64.deb d030b05dcdcdc244c39c6cdb890dfe4360a66194 267040 bind9-utils-dbgsym_9.16.50-1~deb11u1_arm64.deb a15b8b6fbbc3f7a0e518479e937f65d9081f0fed 432504 bind9-utils_9.16.50-1~deb11u1_arm64.deb d059e8285a840f91fd1a70e6372bbd5f2bd0cba3 10924 bind9_9.16.50-1~deb11u1_arm64-buildd.buildinfo 91d6efba7e5f4713b2f2f388178aef8470ecf5cf 482476 bind9_9.16.50-1~deb11u1_arm64.deb Checksums-Sha256: 4a3e6b3d1f0fd3bea91f90b2c02cd3fe6c315835b82b6cedd48aa7479a74db45 511864 bind9-dbgsym_9.16.50-1~deb11u1_arm64.deb ad052e4aed05e1cad33b8e2182e58dff1ffa19472f9b259a3fc7e9bf96279da7 1787600 bind9-dev_9.16.50-1~deb11u1_arm64.deb a761c670de2a017f1e1294ffeb9b6ab8e352ed14200bfd4f69e9d73000fd82b4 282432 bind9-dnsutils-dbgsym_9.16.50-1~deb11u1_arm64.deb 594cc600755497e9332a44c21127dbfbb4e324176a1da184b1f092c6064f2bcc 401512 bind9-dnsutils_9.16.50-1~deb11u1_arm64.deb 670a0c4ffd7cdbf587c6e76bc566cca82878b5a59aeb22995cd74b01b0623f67 79568 bind9-host-dbgsym_9.16.50-1~deb11u1_arm64.deb fe4ebdd2dd875e77e7b36ff8f1cbc1d3e169a0ccc90b1bdddd651b3c3f9d8282 309888 bind9-host_9.16.50-1~deb11u1_arm64.deb 595ea63fe8026fa0917a32519cfc53ca10f86d1bea0d374b1812b2be7c1de7af 3384632 bind9-libs-dbgsym_9.16.50-1~deb11u1_arm64.deb 0536cd09754a9be535ed384d5a2a991088301d966f30d9c68a7bd136563afd9f 1314496 bind9-libs_9.16.50-1~deb11u1_arm64.deb 3df5cdd146480f935e68deba465300f24d569b9472b351c362c7c5ef6d310aaf 267040 bind9-utils-dbgsym_9.16.50-1~deb11u1_arm64.deb ab1f8a862a1f272c4e5a0b8f82fad8257a3e11469448dff064f9fab4679a709c 432504 bind9-utils_9.16.50-1~deb11u1_arm64.deb 1995dbcaaa18d5bc873d2ed6d0f04e8f54f5c86b067dc52b9bf11b48855f1510 10924 bind9_9.16.50-1~deb11u1_arm64-buildd.buildinfo 4269ff4fc83f734369ec5e0aeebc5d079ab69a0acd5338fbef32fca49b2fd085 482476 bind9_9.16.50-1~deb11u1_arm64.deb Files: 936112a2730fa3ffe0f67a046a90c093 511864 debug optional bind9-dbgsym_9.16.50-1~deb11u1_arm64.deb 0ef0db2e5d372baf82c21a52045ae63f 1787600 devel optional bind9-dev_9.16.50-1~deb11u1_arm64.deb 8696148af5e2aead1fe7bae4329de052 282432 debug optional bind9-dnsutils-dbgsym_9.16.50-1~deb11u1_arm64.deb a3c4cb347ece8e53bddeec082e850310 401512 net standard bind9-dnsutils_9.16.50-1~deb11u1_arm64.deb 3c1ece0143ce2bdfe8ed4e39a5bfe369 79568 debug optional bind9-host-dbgsym_9.16.50-1~deb11u1_arm64.deb 3ae165ff0816c38aebb25dfd308a5b11 309888 net standard bind9-host_9.16.50-1~deb11u1_arm64.deb e7a1b9958f18d736a24b3e71b6b59b58 3384632 debug optional bind9-libs-dbgsym_9.16.50-1~deb11u1_arm64.deb b69df967dccfce1f8ca9a78e99f0e7b5 1314496 libs standard bind9-libs_9.16.50-1~deb11u1_arm64.deb fa24a107c2d90d8411212afe1f7d946e 267040 debug optional bind9-utils-dbgsym_9.16.50-1~deb11u1_arm64.deb 8f142bad8d53b789b1b87a9c0ab2f8de 432504 net optional bind9-utils_9.16.50-1~deb11u1_arm64.deb ef9ef98b875231ac3ff140bee16ca12e 10924 net optional bind9_9.16.50-1~deb11u1_arm64-buildd.buildinfo 818305f9e9eb3cd9d8d8682ee2f344f9 482476 net optional bind9_9.16.50-1~deb11u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0+FegZ3qs8CHnZkx+XaKpT5fkBIFAmaf82EACgkQ+XaKpT5f kBKwiQ/9HgvU87xJwNfI0tVgY9gInbaEcwWeDcrEuIBhfhLVLm31CuL7OLe2iiML mW+wfm3WpEFodAJVxn32+oHT2GpWvkuuhl2AuZaIwvR2+AA+NB6wI4zpeo5bkHbI H0yuq6IrsRsiZDytm+aznpQvi7S5Lc/xNppLOMemeRDpytLkDDRqCBtB+ZA/TkOC CcvNKk/7ULmR+FoOxzMm26IDwwN3UA8Yc0V8Tv+fpyxH5CvBDY07Wte9ia1623zL cRaF6wFnWp3P+rE5fqoLHR1Fc9Z97WONNmsfn4Q8T/6gB4DHGQ2evwQa3RMLsgWV 6Y7/nus6OwcdBVVNlATegsk8s/u2FqytRzSmZJI/7kiVpgfJXf7h1DLvmXo6qYCs ynSJSePhHKg4POkSKNmtvl6l4VRbr50tVd+sptnsys3UmF/3hAPJJfBW2MfsL4+K 71IBmfBRcauAgvkHIgCaIgJtsgWjVtlWne7HvrRqMswCN4yJ1K6F3k0M7YDim4UO ts8LjzKvZBQoH2/oGrf/f3dgXzU/EuMveSA92Q6LV6GTNwpa4l2oBw7016RFEd+e bCIG3jW3Pn+hRb2MP56mYEdVHwBQ+Ws1vt8E5ZrnVc7x6N4Kj/FNvz7MQgGHjD43 mKql3AUFXxk9mw67EufCjIgFw1hVwZQe3Yct+/R8c5j+vgEGAvo= =N93l -----END PGP SIGNATURE-----