Bug#676510: marked as done (CVE-2012-1820: DoS in BGP)

Thu, 07 Jun 2012 17:06:14 -0700 

Your message dated Fri, 08 Jun 2012 00:03:53 +0000
with message-id <[email protected]>
and subject line Bug#676510: fixed in quagga 0.99.21-3
has caused the Debian Bug report #676510,
regarding CVE-2012-1820: DoS in BGP
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
676510: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676510
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: quagga
Severity: grave
Tags: security

Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1820 for
details and a patch.

Cheers,
        Moritz

--- End Message ---
--- Begin Message --- 
Source: quagga
Source-Version: 0.99.21-3

We believe that the bug you reported is fixed in the latest version of
quagga, which is due to be installed in the Debian FTP archive:

quagga-dbg_0.99.21-3_amd64.deb
  to main/q/quagga/quagga-dbg_0.99.21-3_amd64.deb
quagga-doc_0.99.21-3_all.deb
  to main/q/quagga/quagga-doc_0.99.21-3_all.deb
quagga_0.99.21-3.debian.tar.gz
  to main/q/quagga/quagga_0.99.21-3.debian.tar.gz
quagga_0.99.21-3.dsc
  to main/q/quagga/quagga_0.99.21-3.dsc
quagga_0.99.21-3_amd64.deb
  to main/q/quagga/quagga_0.99.21-3_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Christian Hammers <[email protected]> (supplier of updated quagga package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Fri, 08 Jun 2012 01:15:32 +0200
Source: quagga
Binary: quagga quagga-dbg quagga-doc
Architecture: source amd64 all
Version: 0.99.21-3
Distribution: unstable
Urgency: high
Maintainer: Christian Hammers <[email protected]>
Changed-By: Christian Hammers <[email protected]>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-dbg - BGP/OSPF/RIP routing daemon (debug symbols)
 quagga-doc - documentation files for quagga
Closes: 676510
Changes: 
 quagga (0.99.21-3) unstable; urgency=high
 .
   * SECURITY:
     CVE-2012-1820 - Quagga contained a bug in BGP OPEN message handling.
     A denial-of-service condition could be caused by an attacker controlling
     one of the pre-configured BGP peers. In most cases this means, that the
     attack must be originated from an adjacent network. Closes: #676510
Checksums-Sha1: 
 10365fa085747bfd8d269429388f9ed206736861 1434 quagga_0.99.21-3.dsc
 56387fc02f2d9d304e50575b47073be746595229 39087 quagga_0.99.21-3.debian.tar.gz
 2744e5c0155b82c3d748fe30ae5dddc3da834f20 1707946 quagga_0.99.21-3_amd64.deb
 be5cff3e6a304ff2a511dd80c1beec8f3bd14d31 2500786 quagga-dbg_0.99.21-3_amd64.deb
 6914053ac48b0ad476a7ccb3ee778ddfaaf2a360 645080 quagga-doc_0.99.21-3_all.deb
Checksums-Sha256: 
 43452d259b6864e30cf56aba1cc0e0d979a3c383551dc6140680b6ca99df6543 1434 
quagga_0.99.21-3.dsc
 e412312efa9635d65bdcd62140600b9326f4d35b23fd199a3dc124542f98a644 39087 
quagga_0.99.21-3.debian.tar.gz
 3bba73189f0f081592771cdddf3ba1accdeaf09711467272c8e5e5581fa94bb6 1707946 
quagga_0.99.21-3_amd64.deb
 9d1621d839648205e6280a3b00013c5e34d8089738580915d2168e28965bc843 2500786 
quagga-dbg_0.99.21-3_amd64.deb
 d462367883849add437629084047efca6428923b45ec9a1b2d13f24c75ed1396 645080 
quagga-doc_0.99.21-3_all.deb
Files: 
 bf0a87b64d83a71c2edfe65d52da2f9c 1434 net optional quagga_0.99.21-3.dsc
 fda2e4b4ceed964aa270b92685e9de43 39087 net optional 
quagga_0.99.21-3.debian.tar.gz
 da85822a4300b91986cb677ee1127feb 1707946 net optional 
quagga_0.99.21-3_amd64.deb
 e623d24b662c3560aff7a46b9d7aacc9 2500786 debug extra 
quagga-dbg_0.99.21-3_amd64.deb
 3ffda7f77eb335724ac00bb03c42f435 645080 net optional 
quagga-doc_0.99.21-3_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAk/RPDwACgkQkR9K5oahGObkfgCfXt0FCzInncou+oe7lkYwxjKQ
n/0An0lylESWuFTBr1TEHAAeXGECMME4
=rMqf
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to