-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 18 Jun 2009 06:12:34 +0200
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev
Architecture: ia64
Version: 1.2.1-5+lenny1
Distribution: stable-security
Urgency: high
Maintainer: Debian/IA64 Build Daemon <buildd@caballero.debian.org>
Changed-By: Michael Biebl <biebl@debian.org>
Description: 
 dbus       - simple interprocess messaging system
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system
 libdbus-1-dev - simple interprocess messaging system (development headers)
Closes: 532720
Changes: 
 dbus (1.2.1-5+lenny1) stable-security; urgency=high
 .
   * debian/patches/52-CVE-2009-1189.patch
     - Security: The _dbus_validate_signature_with_reason function
       (dbus-marshal-validate.c) uses incorrect logic to validate a basic type,
       which allows remote attackers to spoof a signature via a crafted key.
       NOTE: this is due to an incorrect fix for CVE-2008-3834
       Closes: #532720
       Fixes: CVE-2009-1189
   * Urgency high for the security fix.
Checksums-Sha1: 
 231809840b60256038723fbe6ada0e31f42da0c7 487536 dbus_1.2.1-5+lenny1_ia64.deb
 bff2402182d96727c5d1bf47f3ec740a98219e94 68598 dbus-x11_1.2.1-5+lenny1_ia64.deb
 9604d6aed8788487b11aba3c4a9d3eacb86d12bb 205560 libdbus-1-3_1.2.1-5+lenny1_ia64.deb
 fd4c18ca849ed545ed1716412652e57928037d89 297824 libdbus-1-dev_1.2.1-5+lenny1_ia64.deb
Checksums-Sha256: 
 d33cfb6962ca4b57e081681e2332c457109f6f1a498f32aa309aa2461151b56b 487536 dbus_1.2.1-5+lenny1_ia64.deb
 b96240ca1e6982ff99224837742d7a677aa1fe78e3af40f6cf796a8c3878f6b0 68598 dbus-x11_1.2.1-5+lenny1_ia64.deb
 44bc7ddbce0d1aa98480af577d90e9503e3c78937b8168ca68cb628dffb02935 205560 libdbus-1-3_1.2.1-5+lenny1_ia64.deb
 581d62ebdc94e687630eafbd83c3ec3fbadbb495f111deca67eb950b6dd117be 297824 libdbus-1-dev_1.2.1-5+lenny1_ia64.deb
Files: 
 4b94b66cd09d99250b8d78bab7a51cc3 487536 devel optional dbus_1.2.1-5+lenny1_ia64.deb
 e8d496cdde34439f3e8545f51b875a1d 68598 x11 optional dbus-x11_1.2.1-5+lenny1_ia64.deb
 a3943a7fde111a5fad1fb33a0b01471d 205560 libs optional libdbus-1-3_1.2.1-5+lenny1_ia64.deb
 15211d3862458004a9f10b6968d839e3 297824 libdevel optional libdbus-1-dev_1.2.1-5+lenny1_ia64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iQEcBAEBAgAGBQJKRgxdAAoJECIIoQCMVaAcILgH/0qQmcZq/ZjFureRC9zjRPWo
7PWTtEf4SgZTeqC51fZ4VQA3jsnNV9Ve1HSUtsa7MDoQzKiycDMv80n+7TrEUm8i
zZFEfQe+nWSM4rOewiZ89x9sexLKrWsSCQR6I2wRTqAlqxu5ISOGnZSvUSmhiyeQ
mohejtRvCxg2SMn7ZZ+/P49gG3fW5nzKtqeFPlQcJNAu1Tm2SsfhiGJf32DTe77L
xPSM5tM/TQPYhC69/L+KHr9ydAWtf0lvUIJbK80CxcWIJrzD8c88bsunWCHssN6q
fyxmZYX9L462cnH6VXsf/7kLtG9Z6kMh3RrnWdENkeY7Cit7r3wgoh1zhKJWeLg=
=dJg5
-----END PGP SIGNATURE-----