From: [email protected]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ------------------------------------------------------------------------ Debian Security Advisory DSA-1628-1 [email protected] http://www.debian.org/security/ Florian Weimer
August 10, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------

Package : pdns
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2008-3337

Brian Dowling discovered that the PowerDNS authoritative name server
does not respond to DNS queries which contain certain characters,
increasing the risk of successful DNS spoofing (CVE-2008-3337). This
update changes PowerDNS to respond with SERVFAIL responses instead.

For the stable distribution (etch), this problem has been fixed in version 2.9.20-8+etch1.

For the unstable distribution (sid), this problem has been fixed in
version 2.9.21.1-1.

We recommend that you upgrade your pdns package.

Upgrade instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 4.0 alias etch
- -------------------------------

Source archives:

http://security.debian.org/pool/updates/main/p/pdns/pdns_2.9.20-8+etch1.dsc
Size/MD5 checksum: 1137 0a41ec265f82fce6d439919cdae6001a
http://security.debian.org/pool/updates/main/p/pdns/pdns_2.9.20-8+etch1.diff.gz
Size/MD5 checksum: 51420 bb972467332e6122cee9d363ca55ad2e
http://security.debian.org/pool/updates/main/p/pdns/pdns_2.9.20.orig.tar.gz
Size/MD5 checksum: 861879 66b3d3847f91e9ac3d13bdb8ddabfc7b

Architecture independent packages:

http://security.debian.org/pool/updates/main/p/pdns/pdns_2.9.20-8+etch1_all.deb
Size/MD5 checksum: 18402 ce1890128198b2924ec047c6fc4cd986
http://security.debian.org/pool/updates/main/p/pdns/pdns-doc_2.9.20-8+etch1_all.deb
Size/MD5 checksum: 151286 ee2289703f9bc5a55ec2610309f638d8

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-geo_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 128498 662065c9d72d1ce6010322203c0de483
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pipe_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 101180 ed93c993121ef29ea27aec3e51ae780a
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-ldap_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 270198 7ea2ed079ca10c956bf85ce86cc4b91f
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-sqlite_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 80612 66cdb0206efd5384a6c12059bed6a810
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pgsql_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 89786 5b5b81b0b2b5a652047c8b5843f853a5
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-mysql_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 85122 7b27de3ebd7f6b97b56aac71b724bf74
http://security.debian.org/pool/updates/main/p/pdns/pdns-server_2.9.20-8+etch1_alpha.deb
Size/MD5 checksum: 809372 9de5122e1f69aafe84e9cfa5804223c5

amd64 architecture (AMD x86_64 (AMD64))

http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-geo_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 105322 1f82a2e47996af30eaf4cbb3790d8595
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pgsql_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 72704 11d22cf7210db662e8667784f07aa5f3
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-ldap_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 216888 8568e7c10fa743b1b94d84a5d65be8b4
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-mysql_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 69118 297d560f7fc926151fb3e7e48840e279
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-sqlite_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 65954 4ce9ab913782ad2285e1a729f73bfb77
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pipe_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 81000 62ea289801afba9d82d57647a5b69a1e
http://security.debian.org/pool/updates/main/p/pdns/pdns-server_2.9.20-8+etch1_amd64.deb
Size/MD5 checksum: 700178 466d9d5a83f8f54346bcfef8594482cb

arm architecture (ARM)

http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-sqlite_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 72396 1cdaa3e1e9b6f9c0fc4c0d6ebd4431cc
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-geo_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 113774 f9e6a066829b4ab17cacb06da5115c97
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pgsql_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 79256 ae1f671e2546d03ee244ca08a6cd7739
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-ldap_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 245716 a914afcf74e95b26e87a2982ea339318
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-mysql_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 76732 ed38f9dea0d74cfac026951d532eb2dc
http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pipe_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 88456 5e573619f814e75190dfbd5d18684cbe
http://security.debian.org/pool/updates/main/p/pdns/pdns-server_2.9.20-8+etch1_arm.deb
Size/MD5 checksum: 834670 4f9ff6e1b22d5ebe6a2cee9cfab9f333

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/p/pdns/pdns-backend-pipe_2.9.20-8+etch1_hppa.deb
Size/MD5 checksum: 89188 c7d85f3d66651f9b27b10ccc26bc56c4
http://security.debian.org/pool/updates/main/p/pdns/pdns-server_2.9.20-8+etch1_hppa.deb
Size/MD5 checksum: 779220 b1ce1b8f19c577b0ee4f2a1ee08237e7

[continued in next message]

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)