New Debian bind9 1:9.18.33-1~deb12u2A~5.2.0.202501301650 fixes: This update addresses the following issues: 1:9.18.33-1~deb12u2 (Sat, 25 Jan 2025 11:14:58 +0100) * New upstream version 9.18.33 - CVE-2024-12705: DNS-over-HTTPS flooding fixes - CVE-2024-11187: Limit additional section processing for large RDATA sets
--- mirror/ftp/pool/main/b/bind9/bind9_9.18.28-1~deb12u2A~5.2.0.202407301537.dsc +++ apt/ucs_5.2-0-errata5.2-0/source/bind9_9.18.33-1~deb12u2A~5.2.0.202501301650.dsc @@ -1,4 +1,4 @@ -1:9.18.28-1~deb12u2A~5.2.0.202407301537 [Tue, 30 Jul 2024 15:37:43 -0000] Univention builddaemon <buildd@univention.de>: +1:9.18.33-1~deb12u2A~5.2.0.202501301650 [Thu, 30 Jan 2025 16:51:04 -0000] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 0001-Bug-22478-build-bind-with-libdb4.8.patch @@ -7,6 +7,13 @@ 0004-Bug-41714-Add-LDAP-support.quilt 0017-Bug-51786-fix-apparmor-profile.patch +1:9.18.33-1~deb12u2 [Sat, 25 Jan 2025 11:14:58 +0100] Ondřej Surý <ondrej@debian.org>: + + * New upstream version 9.18.33 + - CVE-2024-12705: DNS-over-HTTPS flooding fixes + - CVE-2024-11187: Limit additional section processing for large RDATA + sets + 1:9.18.28-1~deb12u2 [Sat, 27 Jul 2024 05:13:42 +0200] Ondřej Surý <ondrej@debian.org>: * Fix the assertion failure in samba-libs DLZ module. (Closes #1074378) <http://piuparts.knut.univention.de/5.2-0/#6815642792920868543>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.2-0] 205543bfee Bug #57926: bind9 1:9.18.33-1~deb12u2A~5.2.0.202501301650 doc/errata/staging/bind9.yaml | 14 ++++++++++++++ 1 file changed, 14 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.2x3>