-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 18 Jun 2009 06:12:34 +0200
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev
Architecture: arm
Version: 1.2.1-5+lenny1
Distribution: stable-security
Urgency: high
Maintainer: Debian/ARM Build Daemon <buildd@toffee.einval.com>
Changed-By: Michael Biebl <biebl@debian.org>
Description: 
 dbus       - simple interprocess messaging system
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system
 libdbus-1-dev - simple interprocess messaging system (development headers)
Closes: 532720
Changes: 
 dbus (1.2.1-5+lenny1) stable-security; urgency=high
 .
   * debian/patches/52-CVE-2009-1189.patch
     - Security: The _dbus_validate_signature_with_reason function
       (dbus-marshal-validate.c) uses incorrect logic to validate a basic type,
       which allows remote attackers to spoof a signature via a crafted key.
       NOTE: this is due to an incorrect fix for CVE-2008-3834
       Closes: #532720
       Fixes: CVE-2009-1189
   * Urgency high for the security fix.
Checksums-Sha1: 
 0b20da2e409a12e344eba0b833c7da0339f29644 223424 dbus_1.2.1-5+lenny1_arm.deb
 092f102928d607536dd2320ab64bc7f2015f8b6e 63812 dbus-x11_1.2.1-5+lenny1_arm.deb
 462bed18bc976492607b6fa7d3c1ccd9663487a7 144958 libdbus-1-3_1.2.1-5+lenny1_arm.deb
 9c16be82178bddb109476cec481e213cfefefd61 238514 libdbus-1-dev_1.2.1-5+lenny1_arm.deb
Checksums-Sha256: 
 65d380884e8b33adf50c0358b4d5ce389055de31ab8d2336fb0a533d4df931e6 223424 dbus_1.2.1-5+lenny1_arm.deb
 e5f7ec0fc7f44e106ef1d11f1331720778ca79fbbd53e057c5c882d2a4e481c2 63812 dbus-x11_1.2.1-5+lenny1_arm.deb
 8c24645c3c0675e055bc7f274c29b13091507a17f6223e644e5239bf161ff986 144958 libdbus-1-3_1.2.1-5+lenny1_arm.deb
 c06b522cfb2dcfec617ee3c03872593fcc85d742e5fe5f4ac0a31c642cfd5c22 238514 libdbus-1-dev_1.2.1-5+lenny1_arm.deb
Files: 
 20befb04db3b6ae82fb152354be8cf1f 223424 devel optional dbus_1.2.1-5+lenny1_arm.deb
 f9acaf50dd1440312f9b3eb9e8ce5665 63812 x11 optional dbus-x11_1.2.1-5+lenny1_arm.deb
 da65511355a4e4484042fd7377e2f520 144958 libs optional libdbus-1-3_1.2.1-5+lenny1_arm.deb
 0369f89685fa04a26ba050b5ae718368 238514 libdevel optional libdbus-1-dev_1.2.1-5+lenny1_arm.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iQEcBAEBAgAGBQJKRgxeAAoJECIIoQCMVaAcgosH+wcJ/BAYGznH6v1f8lusIjUN
ZKRpYSPEo2pF4rBn6XiyvR+wK69Oyb4afnL3lR70SNB8BgwXmfgwLn1xJL5vI8dh
KN/5M2k8BQSd7ik3me3pIEf04inV4OsZAXf6uBXihkazF9ww+SuOaFlX6qlNj4Ms
a//uV/J2SdyNO1aaKfYB2SIpVYBoQb9yAHTqq3I0Sc2wWn7b6Wrp+QGq74Zh7EE8
z+pDV7SKmJ8G4slzE1wqLZRG5uzs1CYLlbcOCGZf/ed9iqNGjC/5hqj93BaKXXj1
E3mLIQvm+4wmIkE1vboheM5xFrbDycsNWhSlgJJsSfoX7JdED4cX4r+tplsPYAw=
=OqIb
-----END PGP SIGNATURE-----