Debian Bug report logs -
#735190
bind9: CVE-2014-0591: A Crafted Query Against an NSEC3-signed Zone Can Crash BIND
Reported by: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 13 Jan 2014 17:21:02 UTC
Severity: grave
Tags: fixed-upstream, security, upstream
Found in version bind9/1:9.7.3.dfsg-1
Fixed in versions bind9/1:9.9.5.dfsg-1, bind9/1:9.8.4.dfsg.P1-6+nmu2+deb7u2
Done: Salvatore Bonaccorso <carnil@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, carnil@debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, LaMont Jones <lamont@debian.org>:
Bug#735190; Package bind9.
(Mon, 13 Jan 2014 17:21:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
New Bug report received and forwarded. Copy sent to carnil@debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, LaMont Jones <lamont@debian.org>.
(Mon, 13 Jan 2014 17:21:06 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: bind9
Severity: grave
Tags: security upstream fixed-upstream
Hi,
the following vulnerability was published for bind9.
CVE-2014-0591[0,1]:
A Crafted Query Against an NSEC3-signed Zone Can Crash BIND
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591
http://security-tracker.debian.org/tracker/CVE-2014-0591
[1] https://kb.isc.org/article/AA-01078
Please adjust the affected versions in the BTS as needed. (From the
versions, all bind9 versions in Debian oldstable, stable and unstable
should be affected).
Regards,
Salvatore
Marked as found in versions bind9/1:9.7.3.dfsg-1.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Mon, 13 Jan 2014 17:30:07 GMT) (full text, mbox, link).
Reply sent
to LaMont Jones <lamont@debian.org>:
You have taken responsibility.
(Sat, 22 Feb 2014 16:03:57 GMT) (full text, mbox, link).
Notification sent
to Salvatore Bonaccorso <carnil@debian.org>:
Bug acknowledged by developer.
(Sat, 22 Feb 2014 16:03:57 GMT) (full text, mbox, link).
Message #12 received at 735190-close@bugs.debian.org (full text, mbox, reply):
Source: bind9
Source-Version: 1:9.9.5.dfsg-1
We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 735190@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
LaMont Jones <lamont@debian.org> (supplier of updated bind9 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 11 Feb 2014 09:16:05 -0700
Source: bind9
Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-90 libdns100 libisc95 liblwres90 libisccc90 libisccfg90 dnsutils lwresd
Architecture: all i386 source
Version: 1:9.9.5.dfsg-1
Distribution: experimental
Urgency: low
Maintainer: LaMont Jones <lamont@debian.org>
Changed-By: LaMont Jones <lamont@debian.org>
Closes: 722669 724844 735190
Description:
bind9-doc - Documentation for BIND
bind9-host - Version of 'host' bundled with BIND 9.X
bind9 - Internet Domain Name Server
bind9utils - Utilities for BIND
dnsutils - Clients provided with BIND
host - Transitional package
libbind9-90 - BIND9 Shared Library used by BIND
libbind-dev - Static Libraries and Headers used by BIND
libdns100 - DNS Shared Library used by BIND
libisc95 - ISC Shared Library used by BIND
libisccc90 - Command Channel Library used by BIND
libisccfg90 - Config File Handling Library used by BIND
liblwres90 - Lightweight Resolver Library used by BIND
lwresd - Lightweight Resolver Daemon
Changes:
bind9 (1:9.9.5.dfsg-1) experimental; urgency=low
.
[Internet Software Consortium, Inc]
.
* New upstream version: 9.9.5 Closes: #735190
.
[Martin Nagy]
.
* dynamic loading of database backends. See:
http://pkgs.fedoraproject.org/cgit/bind.git/tree/bind-96-dyndb.patch.
Closes: #722669
.
[LaMont Jones]
.
* fix sonames
* merge ubuntu changes
* Deliver dns/rrl.h. Closes: #724844
* rules tweak to make backports to pre-dh-systemd releases easier
Checksums-Sha1:
722395528c6efd758cb008dbc4bd89d0a73f816e 337924 bind9-doc_9.9.5.dfsg-1_all.deb
ade9dc5c186dd7e6e0fe5f199d5a951976c107d7 21642 host_9.9.5.dfsg-1_all.deb
95a39b44bc2455fee53f64a207539f40013878eb 307452 bind9_9.9.5.dfsg-1_i386.deb
408a42a5278773e2133c771929a3ae17ecb82899 151628 bind9utils_9.9.5.dfsg-1_i386.deb
cc382dbbcd0e5ef82dbff495bba690e68e2ad21f 64090 bind9-host_9.9.5.dfsg-1_i386.deb
3a62ce6a3efbc16562c56a665458e1ad85ec519c 1197116 libbind-dev_9.9.5.dfsg-1_i386.deb
6fdcb41c4b3809f50155f35da8092cfd4f0966cf 40746 libbind9-90_9.9.5.dfsg-1_i386.deb
50650f7a46205634a29f68722ddbb7422219794c 637170 libdns100_9.9.5.dfsg-1_i386.deb
9b294d629dc22b48a25a5c695ccb6251382fbb7a 161210 libisc95_9.9.5.dfsg-1_i386.deb
7369d59aa96ab10e6639271e02875a7c23e2d1a3 49546 liblwres90_9.9.5.dfsg-1_i386.deb
be5ed0ba4bbd79903e57f44acb9602d7843175bd 34364 libisccc90_9.9.5.dfsg-1_i386.deb
c537c0f06a4a20f814586dbb615b374015cd1f05 52598 libisccfg90_9.9.5.dfsg-1_i386.deb
d2f7b09800b22554db8ccaa32dbd706238f99f06 112224 dnsutils_9.9.5.dfsg-1_i386.deb
7d04a61f5d34427ba306d093a196af76bc2f35ce 215960 lwresd_9.9.5.dfsg-1_i386.deb
a6edae1fc6cec8654e15641d97d95af05cb7afd5 1975 bind9_9.9.5.dfsg-1.dsc
ea05323d1d799fae970a7124debe297ef71f2cd0 7877309 bind9_9.9.5.dfsg.orig.tar.gz
58cfbe4772b98ad5d70c4ab08fe3266b7f42acdc 173324 bind9_9.9.5.dfsg-1.diff.gz
Checksums-Sha256:
d380407bd74247c6a5a8ba681dfe4e544c98047e4e7153fe05ef48cf7a9aeb9f 337924 bind9-doc_9.9.5.dfsg-1_all.deb
4c95ede253c2e1bd5b59306ba758c995449b29622bd74bfe8e8ce153933ba8e0 21642 host_9.9.5.dfsg-1_all.deb
ab72fc5d2ec0a4afd38a00b2c3adf7ac11bf92c916c2e9e68172c4ba4a35d4a0 307452 bind9_9.9.5.dfsg-1_i386.deb
fe0010dfc1b55ff8b12175c091eb1ae6bb8b2bdd51bc5178af32b9eabea2c4fe 151628 bind9utils_9.9.5.dfsg-1_i386.deb
00acd748ec909c19820aafa53d2f9aed6805b5d97240ae6ba5b2c2651281de2a 64090 bind9-host_9.9.5.dfsg-1_i386.deb
53a556a9de4e2c9281c2b13d2bfa9b481e782636bf90817be6b56234cf0f1a5b 1197116 libbind-dev_9.9.5.dfsg-1_i386.deb
cdd9cae16c8c93bb114f4984a093ba0dc43f29dc49cd9f5f3461d078ee27b051 40746 libbind9-90_9.9.5.dfsg-1_i386.deb
be1b9565d49906f7defff444485134f902a5680bc86c1bdd92276ff8e159f586 637170 libdns100_9.9.5.dfsg-1_i386.deb
95f60c8caaa828bb2efa035a0aa8654bfc7a6952cd21cc0fffc5007c835d2318 161210 libisc95_9.9.5.dfsg-1_i386.deb
89e6d843452d2b3e28803be1a14ec963cc79f5b9afe06d10b28a22e6d5c78e04 49546 liblwres90_9.9.5.dfsg-1_i386.deb
d741e48d468051f60b5facb1b9e005eaa293aec5ed91f47a11e5170f439e199e 34364 libisccc90_9.9.5.dfsg-1_i386.deb
3ef466b9805057e0cb14365f2a82555ab974c126178fb6fe994c6f340d9f0648 52598 libisccfg90_9.9.5.dfsg-1_i386.deb
7a5ac69c77e9794d99220eda5378211ab97e2b941b2d72321ee5dc1ccb7565b8 112224 dnsutils_9.9.5.dfsg-1_i386.deb
34d3751e977ce3b922e3b98c38ce2940b627b20c803f8be26b8e5e15242c7bee 215960 lwresd_9.9.5.dfsg-1_i386.deb
0235b6317532e7df600cccb720982529ac783e7132bead354224e78cb3eb4c17 1975 bind9_9.9.5.dfsg-1.dsc
8108e01d5b501642d986beae7dfff9650b5bf54d87677275a8aaf4f0bcb008e6 7877309 bind9_9.9.5.dfsg.orig.tar.gz
dc9639f977701003ff52fda047c835c6e9cc7b7e5da46a582eaa76c18e5f0d0e 173324 bind9_9.9.5.dfsg-1.diff.gz
Files:
599fd8378c3e19c2234aab7647985f87 337924 doc optional bind9-doc_9.9.5.dfsg-1_all.deb
652341cbb955060484692b157d7f098e 21642 net standard host_9.9.5.dfsg-1_all.deb
98c252ac6c1f0e991634fbdf9fdf505b 307452 net optional bind9_9.9.5.dfsg-1_i386.deb
5ff006db704c388a98d3eaa8894df576 151628 net optional bind9utils_9.9.5.dfsg-1_i386.deb
e2a184f0ee6b8d5b9b84336f19ee0a2d 64090 net standard bind9-host_9.9.5.dfsg-1_i386.deb
f813e5bfbd64292d70f3e12498b1bede 1197116 libdevel optional libbind-dev_9.9.5.dfsg-1_i386.deb
4f7bafa603456a27ece915601b4fec1c 40746 libs standard libbind9-90_9.9.5.dfsg-1_i386.deb
79bb57ff47072c040e023cabbba7593a 637170 libs standard libdns100_9.9.5.dfsg-1_i386.deb
32c49a8151fb73b04b2e5931fb71d302 161210 libs standard libisc95_9.9.5.dfsg-1_i386.deb
0fa26889d581176ade1ad170bf2228cb 49546 libs standard liblwres90_9.9.5.dfsg-1_i386.deb
76d598d2af8342a6c216d2c77631e3fa 34364 libs optional libisccc90_9.9.5.dfsg-1_i386.deb
7b686d209c041043f0221a4e13a4fa29 52598 libs optional libisccfg90_9.9.5.dfsg-1_i386.deb
5e37847f5e99696ee4784c308ee3c2fa 112224 net standard dnsutils_9.9.5.dfsg-1_i386.deb
c34c4066ce098f6fa26604d74df39eaf 215960 net optional lwresd_9.9.5.dfsg-1_i386.deb
b1a21703ec48c79151e4b683d7e0c892 1975 net optional bind9_9.9.5.dfsg-1.dsc
e3b03e1cd273d708cbfbd862297646ce 7877309 net optional bind9_9.9.5.dfsg.orig.tar.gz
edfb3ca77c8316e8719ad21b039ad000 173324 net optional bind9_9.9.5.dfsg-1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iD8DBQFTAmh/zN/kmwoKyScRAsIdAJ91THrZwBTYLeSk3r+MlUmOMg3nPwCdHSdb
+JX7IEPMjPjiFFsXN0nTcKg=
=5COo
-----END PGP SIGNATURE-----
Reply sent
to Salvatore Bonaccorso <carnil@debian.org>:
You have taken responsibility.
(Sat, 13 Sep 2014 11:03:11 GMT) (full text, mbox, link).
Notification sent
to Salvatore Bonaccorso <carnil@debian.org>:
Bug acknowledged by developer.
(Sat, 13 Sep 2014 11:03:11 GMT) (full text, mbox, link).
Message #17 received at 735190-close@bugs.debian.org (full text, mbox, reply):
Source: bind9
Source-Version: 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
We believe that the bug you reported is fixed in the latest version of
bind9, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 735190@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Salvatore Bonaccorso <carnil@debian.org> (supplier of updated bind9 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 05 Sep 2014 22:18:48 +0200
Source: bind9
Binary: bind9 bind9utils bind9-doc host bind9-host libbind-dev libbind9-80 libdns88 libisc84 liblwres80 libisccc80 libisccfg82 dnsutils lwresd
Architecture: source all amd64
Version: 1:9.8.4.dfsg.P1-6+nmu2+deb7u2
Distribution: wheezy-security
Urgency: high
Maintainer: LaMont Jones <lamont@debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
bind9 - Internet Domain Name Server
bind9-doc - Documentation for BIND
bind9-host - Version of 'host' bundled with BIND 9.X
bind9utils - Utilities for BIND
dnsutils - Clients provided with BIND
host - Transitional package
libbind-dev - Static Libraries and Headers used by BIND
libbind9-80 - BIND9 Shared Library used by BIND
libdns88 - DNS Shared Library used by BIND
libisc84 - ISC Shared Library used by BIND
libisccc80 - Command Channel Library used by BIND
libisccfg82 - Config File Handling Library used by BIND
liblwres80 - Lightweight Resolver Library used by BIND
lwresd - Lightweight Resolver Daemon
Closes: 735190
Changes:
bind9 (1:9.8.4.dfsg.P1-6+nmu2+deb7u2) wheezy-security; urgency=high
.
* Non-maintainer upload by the Security Team.
* CVE-2014-0591: named crash when handling malformed NSEC3-signed zones.
A remote attacker could use this flaw against an authoritative name
server that served NCES3-signed zones by sending a specially crafted
query, which, when processed, would cause named to crash. (Closes: #735190)
Checksums-Sha1:
9f2c6ede9f36eb5d3ec639bead7bd7a0b33422b3 2621 bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2.dsc
f43283474e506225cca966a7727dcf49c5ed5b4a 674323 bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2.diff.gz
cb042296f78f1e162ac08bbb568103395473d2d0 365126 bind9-doc_9.8.4.dfsg.P1-6+nmu2+deb7u2_all.deb
e0d1b07fd8dea41f4ec41058730d0507b28cf7cc 20688 host_9.8.4.dfsg.P1-6+nmu2+deb7u2_all.deb
8209ea2e3716c526bd1fa514550443e4847017a5 373318 bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
e4ec846c4ed095cc89a554e4f12a4be505e50cc0 127984 bind9utils_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
f3fdcbeafad50eccf67b0f2b4217dc886f101538 73486 bind9-host_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
edcdeb068611a7bbae83bd24eef5e95574d37dc2 1580970 libbind-dev_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
a0e3941d51463fd7ea57a15b69a7e4159fb510bd 42378 libbind9-80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
beeaf1ab7069279d6e5f49ee73b293f7b4f3062f 750392 libdns88_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
e71bea4ffd121eaafc1c184e46c1a16265bc9dca 182612 libisc84_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
674ca736bd84cb1c48046a06d28da33e2b8430e6 55316 liblwres80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
c6c0dfb329edba198211dd55ab30d619b592e553 36048 libisccc80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
fb6f0740fae61fc3106965df67cdcb6486a834a9 62892 libisccfg82_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
58444167057a31f4ca912ee86ccf80015b28b327 166170 dnsutils_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
4e1d373b69ead4608467e56a5c4a526f8cd76725 252738 lwresd_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
Checksums-Sha256:
470d077929d5bdf32ca09c7d4b8a200469b1b28de5f450bc67ff24add26725ea 2621 bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2.dsc
9be5492ab243bd7150377dc60727203338704cf1352c5ac73c348254cbc61bba 674323 bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2.diff.gz
dc84615ceccabd0365e2a107aea548153031b9a01b0eb97b8ccb0dbd77a50988 365126 bind9-doc_9.8.4.dfsg.P1-6+nmu2+deb7u2_all.deb
6ebefbcf77464222182a0c3836db350de3ba92a064ed3c47868617aa69c348f9 20688 host_9.8.4.dfsg.P1-6+nmu2+deb7u2_all.deb
e60e017675cb30abb8ca407bd2f4cfad42c25c11fd14e6354e65b7f3093c1107 373318 bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
aaead5519260888ef7bdb67cd32a8e20d540d4cc4f6b0f41a33b4b64a9d9a357 127984 bind9utils_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
f742808d73487b737224f7093fe1010ca40c878130a029bb04b992867b2b5595 73486 bind9-host_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
a3b275db57d828136b60f79b27e057f39ef9fd6df5a8b1f99b5f890875dae78c 1580970 libbind-dev_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
bbd67d73afda5943a6d146874b43de1bbff37b146fc7a4b11705c85fdbc333a6 42378 libbind9-80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
05eec85052be23e70de23f76098d2fc26a62d02938b445619a4b4bf871e3b614 750392 libdns88_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
37f6e23048d2f14c692ae2b5a786008237832185ae08281810a049ed61aa66bf 182612 libisc84_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
06d67368a84302376376c03651c024445d006f54ed1582e185f317f619ba87c8 55316 liblwres80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
bb2e8c79a5106d0f5b5f617b96cb7a57b2ba8ae2417725274c23e113499f7184 36048 libisccc80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
5fe12d4e638f258b1974806fffd1b1ba122a9196bb24feb713e5f8f89ea2e93e 62892 libisccfg82_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
db659fba865cac5fc30439ef394221450e7bfee2ced1db294679768840ff7cd1 166170 dnsutils_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
3189f7147a5f2ba9ed9086c1e0cf8227e1fc13ab180280d606b3651331c251b4 252738 lwresd_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
Files:
3c2e21060065d5bd3f5a5bc6ae8a71ef 2621 net optional bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2.dsc
da52dd4c1b52b28f55d66eb2375d0d29 674323 net optional bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2.diff.gz
e6f8128c564b616dd810e9431aecfc0a 365126 doc optional bind9-doc_9.8.4.dfsg.P1-6+nmu2+deb7u2_all.deb
cbe7980d3442e99b9de438abd150d16c 20688 net standard host_9.8.4.dfsg.P1-6+nmu2+deb7u2_all.deb
0095347a052e51d77872f4b1422036a8 373318 net optional bind9_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
f3a8200c5b4383950a1014fafca67266 127984 net optional bind9utils_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
4c4bd4a3ccf55d39cfc40d23097e50c7 73486 net standard bind9-host_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
abc23bbd15520efdeb0d4342e4ff83d3 1580970 libdevel optional libbind-dev_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
a60437996449288d606ebb7b2050cf10 42378 libs standard libbind9-80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
73661863ee0d11c4e004b13239cc50fe 750392 libs standard libdns88_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
fa09e0ef1822de2c0ca9b7271608b798 182612 libs standard libisc84_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
8e54cd24198744cb8962063bd1af3494 55316 libs standard liblwres80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
4f99e2c0b6f68843ea967861c9701a12 36048 libs optional libisccc80_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
63e91410d3c70f2a2dcb7a1b726e82d2 62892 libs optional libisccfg82_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
2bc55938503fc368aef180813c7202aa 166170 net standard dnsutils_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
6e4a2fa5462fa16dc0f638a44ced8cf2 252738 net optional lwresd_9.8.4.dfsg.P1-6+nmu2+deb7u2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=iQ/3
-----END PGP SIGNATURE-----
Information forwarded
to debian-bugs-dist@lists.debian.org, LaMont Jones <lamont@debian.org>:
Bug#735190; Package bind9.
(Thu, 25 Sep 2014 13:45:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Nigel Horne <njh@bandsman.co.uk>:
Extra info received and forwarded to list. Copy sent to LaMont Jones <lamont@debian.org>.
(Thu, 25 Sep 2014 13:45:05 GMT) (full text, mbox, link).
Message #22 received at 735190@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Since updating with this, bind stays up no more than 5 minutes before
crashing. Please fix urgently.
-Nigel
[smime.p7s (application/pkcs7-signature, attachment)]
Information forwarded
to debian-bugs-dist@lists.debian.org, LaMont Jones <lamont@debian.org>:
Bug#735190; Package bind9.
(Thu, 25 Sep 2014 16:00:09 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to LaMont Jones <lamont@debian.org>.
(Thu, 25 Sep 2014 16:00:09 GMT) (full text, mbox, link).
Message #27 received at 735190@bugs.debian.org (full text, mbox, reply):
Hi Nigel,
On Thu, Sep 25, 2014 at 09:29:58AM -0400, Nigel Horne wrote:
> Since updating with this, bind stays up no more than 5 minutes before
> crashing. Please fix urgently.
Can you clarify from which version to which other version you have
updated bind9 packages? Can you confirm the problem dissapear if you
downgrade the packages?
Regards,
Salvatore
Information forwarded
to debian-bugs-dist@lists.debian.org, LaMont Jones <lamont@debian.org>:
Bug#735190; Package bind9.
(Thu, 25 Sep 2014 16:09:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Nigel Horne <njh@bandsman.co.uk>:
Extra info received and forwarded to list. Copy sent to LaMont Jones <lamont@debian.org>.
(Thu, 25 Sep 2014 16:09:04 GMT) (full text, mbox, link).
Message #32 received at 735190@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
On 25/09/2014 11:56, Salvatore Bonaccorso wrote:
> Hi Nigel,
>
> On Thu, Sep 25, 2014 at 09:29:58AM -0400, Nigel Horne wrote:
>> Since updating with this, bind stays up no more than 5 minutes before
>> crashing. Please fix urgently.
> Can you clarify from which version to which other version you have
> updated bind9 packages? Can you confirm the problem dissapear if you
> downgrade the packages?
The version is now 1:9.9.5.dfsg-4.1 . I updated today from what ever
the previous version was. I looked in dpkg.log, but did doesn't say (or
I couldn't work out from it) what the previous version was, but I always
keep it up to date so it will have been whatever the previous released
version was.
Which version would be best to downgrade to?
>
> Regards,
> Salvatore
Regards,
-Nigel
[smime.p7s (application/pkcs7-signature, attachment)]
Information forwarded
to debian-bugs-dist@lists.debian.org, LaMont Jones <lamont@debian.org>:
Bug#735190; Package bind9.
(Thu, 25 Sep 2014 16:33:09 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to LaMont Jones <lamont@debian.org>.
(Thu, 25 Sep 2014 16:33:09 GMT) (full text, mbox, link).
Message #37 received at 735190@bugs.debian.org (full text, mbox, reply):
Hi Nigel,
On Thu, Sep 25, 2014 at 12:05:10PM -0400, Nigel Horne wrote:
> On 25/09/2014 11:56, Salvatore Bonaccorso wrote:
> >Hi Nigel,
> >
> >On Thu, Sep 25, 2014 at 09:29:58AM -0400, Nigel Horne wrote:
> >>Since updating with this, bind stays up no more than 5 minutes before
> >>crashing. Please fix urgently.
> >Can you clarify from which version to which other version you have
> >updated bind9 packages? Can you confirm the problem dissapear if you
> >downgrade the packages?
>
> The version is now 1:9.9.5.dfsg-4.1 . I updated today from what ever the
> previous version was. I looked in dpkg.log, but did doesn't say (or I
> couldn't work out from it) what the previous version was, but I always keep
> it up to date so it will have been whatever the previous released version
> was.
>
> Which version would be best to downgrade to?
Thanks for the additional information provided.
Ok, from the version number, it seems you are not running stable, and
are on unstable. If you downgrade back to 1:9.9.5.dfsg-4 dissapear?
This sounds like #762838
If so, could you follow up there? #735190 was about "CVE-2014-0591: A
Crafted Query Against an NSEC3-signed Zone Can Crash BIND".
Regards,
Salvatore
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Fri, 24 Oct 2014 07:34:46 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 18:57:46 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon