-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 18 Jun 2009 06:12:34 +0200
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev
Architecture: sparc
Version: 1.2.1-5+lenny1
Distribution: stable-security
Urgency: high
Maintainer: Debian Build Daemon <buildd_sparc-lebrun@buildd.debian.org>
Changed-By: Michael Biebl <biebl@debian.org>
Description: 
 dbus       - simple interprocess messaging system
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system
 libdbus-1-dev - simple interprocess messaging system (development headers)
Closes: 532720
Changes: 
 dbus (1.2.1-5+lenny1) stable-security; urgency=high
 .
   * debian/patches/52-CVE-2009-1189.patch
     - Security: The _dbus_validate_signature_with_reason function
       (dbus-marshal-validate.c) uses incorrect logic to validate a basic type,
       which allows remote attackers to spoof a signature via a crafted key.
       NOTE: this is due to an incorrect fix for CVE-2008-3834
       Closes: #532720
       Fixes: CVE-2009-1189
   * Urgency high for the security fix.
Checksums-Sha1: 
 4d06a2898fad28fdcacf4072a59e73adcdfe135b 254556 dbus_1.2.1-5+lenny1_sparc.deb
 7601aeb97652d47e549f1f1273ee9ec08ad94464 63946 dbus-x11_1.2.1-5+lenny1_sparc.deb
 6cbcaa3dafc51bf284893ab74efcf8714b5bbc59 145182 libdbus-1-3_1.2.1-5+lenny1_sparc.deb
 1ff89c96fe3bc3ff3ceea333f5fac82dbe319ea8 235150 libdbus-1-dev_1.2.1-5+lenny1_sparc.deb
Checksums-Sha256: 
 90256aae73c8e8c81c8f272b7bc63600d74353090b3f295b4b9a7672841eab46 254556 dbus_1.2.1-5+lenny1_sparc.deb
 807753ea3c96fa3b98caae7bcbe204b2973ad52aec7af1f0188f2afb890d5856 63946 dbus-x11_1.2.1-5+lenny1_sparc.deb
 f0b2653d3679b61b3ca7fbae20c5f0f7428c4d4730f9bef01d38a85619451ba0 145182 libdbus-1-3_1.2.1-5+lenny1_sparc.deb
 931fd664565bfe222365581db083d9519adbbbc57e9e6d34e4a853c29ec17659 235150 libdbus-1-dev_1.2.1-5+lenny1_sparc.deb
Files: 
 8f8bc903fe5eb131a75cbfd0f282cc21 254556 devel optional dbus_1.2.1-5+lenny1_sparc.deb
 4e1a64b89ca25775553e7653cf2cb3eb 63946 x11 optional dbus-x11_1.2.1-5+lenny1_sparc.deb
 7493ade5ef50256253977a3c708a87dd 145182 libs optional libdbus-1-3_1.2.1-5+lenny1_sparc.deb
 7e6ab5023ad36c713a0eff40e6f60045 235150 libdevel optional libdbus-1-dev_1.2.1-5+lenny1_sparc.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iQEcBAEBAgAGBQJKRgxfAAoJECIIoQCMVaAc+6AH/37Dqh6dXitOrKjzzAaQ3QpH
XSeAVhMixqc1kKo2UWUfkSii1R3kA+uPusQGe/DN387frIbYWNkA0YzlDXM6Qc+C
mbArcervsWVwRnO45u2ugZrlhx5pW+JV6R/JctR8Ct/MwOi3OAzulD+vQ7GWkwck
i9iZjgd/CuApWB5IgH1+nAJOUFQ3WNMCpUVJCUuh9Czsk/7V96c2xpYznUl410Fz
YlatyJUpwh70a9vNiJFcQTbO64spWBCzYIHW4JDCSsgdRY50GBdXdsuKDWX01dwf
NPthiqgTniikFnaTxpvIhtsrZ+VuD8jMN+GZ06cHwJncwwGpx+2uOBbmrGUsVHE=
=OCr3
-----END PGP SIGNATURE-----