-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 12 Feb 2024 17:25:59 +0100
Source: bind9
Binary: bind9 bind9-dbgsym bind9-dev bind9-dnsutils bind9-dnsutils-dbgsym bind9-host bind9-host-dbgsym bind9-libs bind9-libs-dbgsym bind9-utils bind9-utils-dbgsym
Architecture: i386
Version: 1:9.16.48-1
Distribution: bullseye-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) <buildd_amd64-x86-conova-02@buildd.debian.org>
Changed-By: Ondřej Surý <ondrej@debian.org>
Description:
 bind9      - Internet Domain Name Server
 bind9-dev  - Static Libraries and Headers used by BIND 9
 bind9-dnsutils - Clients provided with BIND 9
 bind9-host - DNS Lookup Utility
 bind9-libs - Shared Libraries used by BIND 9
 bind9-utils - Utilities for BIND 9
Changes:
 bind9 (1:9.16.48-1) bullseye-security; urgency=high
 .
   * New upstream version 9.16.48
    - CVE-2023-4408: Parsing large DNS messages may cause excessive CPU
      load
    - CVE-2023-5517: Querying RFC 1918 reverse zones may cause an assertion
      failure when "nxdomain-redirect" is enabled
    - CVE-2023-5679: Enabling both DNS64 and serve-stale may cause an
      assertion failure during recursive resolution
    - CVE-2023-6516: Specific recursive query patterns may lead to an
      out-of-memory condition
    - CVE-2023-50387: KeyTrap - Extreme CPU consumption in DNSSEC validator
    - CVE-2023-50868: Preparing an NSEC3 closest encloser proof can exhaust
      CPU resources
   * Update patches from debian/9.16 branch
    - Disable treat-warnings-as-errors in sphinx-build
    - Remove the reference to OPTIONS.md - it breaks build on Debian
      stretch
Checksums-Sha1:
 7572b56aefea5d1363390eab8eea220bf3827089 448648 bind9-dbgsym_9.16.48-1_i386.deb
 2925182ba8752becf0103a6b1e9e2d4a8ee694c3 1930848 bind9-dev_9.16.48-1_i386.deb
 b6d2f0bb962ea56214d4c50c57d0d23d67ed7860 251372 bind9-dnsutils-dbgsym_9.16.48-1_i386.deb
 1f7b17165f7f019192cc2376368656eac773c856 413256 bind9-dnsutils_9.16.48-1_i386.deb
 cce2456fa939cb68d6107cf80c40ea60f1206597 70440 bind9-host-dbgsym_9.16.48-1_i386.deb
 3e2f9f1ee040a4b1c49a08fd41bc72400fcc410c 313736 bind9-host_9.16.48-1_i386.deb
 e3a7fa6eed7abfa3aa43b4d7eaa5ffa87e233f1e 2805000 bind9-libs-dbgsym_9.16.48-1_i386.deb
 1808e3afb13fab6c354e0a5ca7c9ddbd46ef0115 1510924 bind9-libs_9.16.48-1_i386.deb
 dfa356857c8723ea151a77b22fa52ea01e63d3ae 231748 bind9-utils-dbgsym_9.16.48-1_i386.deb
 7e41759cf592d52b8d1ab7befa13bd3b8978f4f0 441936 bind9-utils_9.16.48-1_i386.deb
 0be85c35ac9f75bfb44da6e718d3b02b52259a41 10573 bind9_9.16.48-1_i386-buildd.buildinfo
 57bc9a93961ccd17b9f6ded2e5411e5140cc1d18 512448 bind9_9.16.48-1_i386.deb
Checksums-Sha256:
 2f39ddd206644a38c42cb1704c9f88c51e67b0afef9c065ce9ffbab572e58650 448648 bind9-dbgsym_9.16.48-1_i386.deb
 5c522886d0cb2162a30a4c38ebd22912f5c2c506b7e36a6030820795acff6eff 1930848 bind9-dev_9.16.48-1_i386.deb
 9aeaf8a97b8ca865cf8076496a899c74fcf3c19aec9bff40d930ff5273ed6495 251372 bind9-dnsutils-dbgsym_9.16.48-1_i386.deb
 06b59c9b4f977b97c33995777312b40399e6dcdc088a32376f0874ad62a7161f 413256 bind9-dnsutils_9.16.48-1_i386.deb
 f291e72dc94e2674365f2520e6e60f1335621063a95e74f94a3fbfb6f431d8bf 70440 bind9-host-dbgsym_9.16.48-1_i386.deb
 103a93c17f7d99c05c3325d5217051dbca15a3051f4e6816f5bc37e5991e605d 313736 bind9-host_9.16.48-1_i386.deb
 13d08ef7d00b65591ea2c0d87ca03b02d0d000e519f3eeeca60c2cbc87bab160 2805000 bind9-libs-dbgsym_9.16.48-1_i386.deb
 5afa3506adb7ee3b774d35453ad0946e487b69b0c4ed5a4d5a11d29357fca850 1510924 bind9-libs_9.16.48-1_i386.deb
 4194f09e0ee581165dac0aa2c7e97447d3d4b403058e165ea698fa31d7f8e0f1 231748 bind9-utils-dbgsym_9.16.48-1_i386.deb
 ebea4481f1a1ae2b3c2677f8b892793aeb9b4a2dc4221dec153a6340878e127a 441936 bind9-utils_9.16.48-1_i386.deb
 203741c3f3008ee32e9eff340d0d76faa37e1b7ce87c4c7712240898e021499a 10573 bind9_9.16.48-1_i386-buildd.buildinfo
 6416155b73f92c75fe23c6d10d5ff8e04a9da63b5661744b6d575f8273dcbfc5 512448 bind9_9.16.48-1_i386.deb
Files:
 255c775d9f10d01c27ad923af2f61afd 448648 debug optional bind9-dbgsym_9.16.48-1_i386.deb
 0b69f32bbdb66e73e14710d81663e417 1930848 devel optional bind9-dev_9.16.48-1_i386.deb
 2eda7d9dd5f7c473da184cfd507d8e47 251372 debug optional bind9-dnsutils-dbgsym_9.16.48-1_i386.deb
 fc715d4a861cdb375a4a5d47545a9ffe 413256 net standard bind9-dnsutils_9.16.48-1_i386.deb
 1a7c8ce7fa76e3c1652119758dea63bf 70440 debug optional bind9-host-dbgsym_9.16.48-1_i386.deb
 743ab4abc4d9bf230f389306856be408 313736 net standard bind9-host_9.16.48-1_i386.deb
 3c7b6c2ac7fcb1ff8b12a5c3b2de536a 2805000 debug optional bind9-libs-dbgsym_9.16.48-1_i386.deb
 588c932c6f2d168282b7a8063910912c 1510924 libs standard bind9-libs_9.16.48-1_i386.deb
 26110e5dd25cacbd52c6f8adf8909652 231748 debug optional bind9-utils-dbgsym_9.16.48-1_i386.deb
 daf8a389b70852d64e9ee31d9aa20638 441936 net optional bind9-utils_9.16.48-1_i386.deb
 e85473f12301248ebda98b5c4acf7c01 10573 net optional bind9_9.16.48-1_i386-buildd.buildinfo
 c995bfec75ce985aac63530b8bdc3935 512448 net optional bind9_9.16.48-1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=3rs0
-----END PGP SIGNATURE-----