-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 02 Oct 2011 14:28:25 +0200
Source: quagga
Binary: quagga quagga-doc
Architecture: mips
Version: 0.99.10-1lenny6
Distribution: lenny-security
Urgency: high
Maintainer: mips Build Daemon (lucatelli) <buildd_mips-lucatelli2@buildd.debian.org>
Changed-By: Florian Weimer <fw@deneb.enyo.de>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-doc - documentation files for quagga
Changes: 
 quagga (0.99.10-1lenny6) lenny-security; urgency=high
 .
   * SECURITY:
     This is a backport of the security patches of Quagga 0.99.19 and 0.99.20:
     - The vulnerabilities CVE-2011-3324 and CVE-2011-3323 are related to the
       IPv6 routing protocol (OSPFv3) implemented in ospf6d daemon. Receiving
       modified Database Description and Link State Update messages,
       respectively, can result in denial of service in IPv6 routing.
     - The vulnerability CVE-2011-3325 is a denial of service vulnerability
       related to Hello message handling by the OSPF service. As Hello messages
       are used to initiate adjacencies, exploiting the vulnerability may be
       feasible from the same broadcast domain without an established adjacency.
       A malformed packet may result in denial of service in IPv4 routing.
     - The vulnerability CVE-2011-3326 results from the handling of LSA (Link
       State Advertisement) states in the OSPF service. Receiving a modified
       Link State Update message with malicious state information can result in
       denial of service in IPv4 routing.
     - The vulnerability CVE-2011-3327 is related to the extended communities
       handling in BGP messages. Receiving a malformed BGP update can result in
       a buffer overflow and disruption of IPv4 routing.
Checksums-Sha1: 
 385e64c59b8eaa7437ebf29c89ab90aeb65a671d 1607280 quagga_0.99.10-1lenny6_mips.deb
Checksums-Sha256: 
 a16afee1e140e1745da837200c9fb895322034fb06aa4f1af125eb6256615a79 1607280 quagga_0.99.10-1lenny6_mips.deb
Files: 
 2ae0f51569695025a1a99487b337f11e 1607280 net optional quagga_0.99.10-1lenny6_mips.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
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=wEVB
-----END PGP SIGNATURE-----