-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 18 Jun 2009 06:12:34 +0200
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev
Architecture: hppa
Version: 1.2.1-5+lenny1
Distribution: stable-security
Urgency: high
Maintainer: Debian/HPPA Build Daemon <buildd@penalosa.debian.org>
Changed-By: Michael Biebl <biebl@debian.org>
Description: 
 dbus       - simple interprocess messaging system
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system
 libdbus-1-dev - simple interprocess messaging system (development headers)
Closes: 532720
Changes: 
 dbus (1.2.1-5+lenny1) stable-security; urgency=high
 .
   * debian/patches/52-CVE-2009-1189.patch
     - Security: The _dbus_validate_signature_with_reason function
       (dbus-marshal-validate.c) uses incorrect logic to validate a basic type,
       which allows remote attackers to spoof a signature via a crafted key.
       NOTE: this is due to an incorrect fix for CVE-2008-3834
       Closes: #532720
       Fixes: CVE-2009-1189
   * Urgency high for the security fix.
Checksums-Sha1: 
 7fda4cce33eae7fbfca847b7ac55aa7324bf1c81 270676 dbus_1.2.1-5+lenny1_hppa.deb
 ac644394eae5ffa745687c75c5d68911b5a2167a 64868 dbus-x11_1.2.1-5+lenny1_hppa.deb
 93edc3d2e17856fcb05ac30b60a0a413e78f610a 163954 libdbus-1-3_1.2.1-5+lenny1_hppa.deb
 4a8896344451410cbd8ba823c3304ca3b88e5037 263164 libdbus-1-dev_1.2.1-5+lenny1_hppa.deb
Checksums-Sha256: 
 be96f4fbf6b7d18955d3aa21799d97baa5072f2a415e72f9f589ad21005be004 270676 dbus_1.2.1-5+lenny1_hppa.deb
 9c6ba1134adfd8bb5021cc7ef596d80c15111cb3e4b18ffd40a6b2804879564d 64868 dbus-x11_1.2.1-5+lenny1_hppa.deb
 65351111128b078243ec5bbeca429f9c8ce69086b15a616fd10a9a95ab7ee508 163954 libdbus-1-3_1.2.1-5+lenny1_hppa.deb
 2c35fce82b398b5fa20b2885a711f0bdb367c8060c986a55ac838a3d419b9d68 263164 libdbus-1-dev_1.2.1-5+lenny1_hppa.deb
Files: 
 6ada153b9ff39dfd8a75c08a2a186784 270676 devel optional dbus_1.2.1-5+lenny1_hppa.deb
 5a8bc1e82107effab796c04e6c05592d 64868 x11 optional dbus-x11_1.2.1-5+lenny1_hppa.deb
 dd2a4efdbca917a569d6520be368336c 163954 libs optional libdbus-1-3_1.2.1-5+lenny1_hppa.deb
 2a856048b8c09b075f089ae2551c356f 263164 libdevel optional libdbus-1-dev_1.2.1-5+lenny1_hppa.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iQEcBAEBAgAGBQJKRgxeAAoJECIIoQCMVaAci0cH/jRfp7G/ld5T6B4/33amVKiM
baetDiA5DNiVk1j816jGQ1lX6g5/juaWwYe5IGBsRYbXQPDt4hNbrDnCik9wpQ/F
MYAMpB8UCeeWdvBmjP+b4ypF3fxWXb76NToauIQd2rKQ0+zYrYYyBWuPoG0Qqzyq
bem1HbLz4/kJR30PbGe+npGBHYx7oarDIKPUMa+mJfjn4tlxSppNhu1MRUK3Cj9V
0B5D0LbhHn4/ovZgT6YtbvY7ZnINC52o4qBY2UlfvwZsJuFzcAbVzzOxPlPqFahY
9Q98ip7Umt/VVn5pq8NY7bnQMLfVKIAwSvK4pu7WDMbNJrp9LbjcXgrKqm5w+Rc=
=6uw6
-----END PGP SIGNATURE-----