-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 18 Jun 2009 06:12:34 +0200
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev
Architecture: armel
Version: 1.2.1-5+lenny1
Distribution: stable-security
Urgency: high
Maintainer: armel Build Daemon (argento) <buildd_arm-argento@buildd.debian.org>
Changed-By: Michael Biebl <biebl@debian.org>
Description: 
 dbus       - simple interprocess messaging system
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system
 libdbus-1-dev - simple interprocess messaging system (development headers)
Closes: 532720
Changes: 
 dbus (1.2.1-5+lenny1) stable-security; urgency=high
 .
   * debian/patches/52-CVE-2009-1189.patch
     - Security: The _dbus_validate_signature_with_reason function
       (dbus-marshal-validate.c) uses incorrect logic to validate a basic type,
       which allows remote attackers to spoof a signature via a crafted key.
       NOTE: this is due to an incorrect fix for CVE-2008-3834
       Closes: #532720
       Fixes: CVE-2009-1189
   * Urgency high for the security fix.
Checksums-Sha1: 
 05836e94f38c8e9b29c3d1b2477f577c32f8bcaa 228326 dbus_1.2.1-5+lenny1_armel.deb
 b1dbe42837b8adbf1a0bafeb428e4741eb4340da 63572 dbus-x11_1.2.1-5+lenny1_armel.deb
 3f3ce3856c229cc79bf56771b323c9caad386a05 146562 libdbus-1-3_1.2.1-5+lenny1_armel.deb
 4a89c955cb636476e6753e6afc9c7a78b6dc1327 239468 libdbus-1-dev_1.2.1-5+lenny1_armel.deb
Checksums-Sha256: 
 866796b3b869bff90465614e0798a5d8a1dbc4f754ed7217c8ebe59c6d8421af 228326 dbus_1.2.1-5+lenny1_armel.deb
 26ba445b97479293102937cd37bcd3cee7eeedf7e27fb531829eb3bd1d13353d 63572 dbus-x11_1.2.1-5+lenny1_armel.deb
 39e60a3a9d391586002092264c6938702b2b9a913290b08a88e3834484c944b0 146562 libdbus-1-3_1.2.1-5+lenny1_armel.deb
 b77968adcc94564761edaaed5147670f105a6be3ac5f33657b08287171fea0e5 239468 libdbus-1-dev_1.2.1-5+lenny1_armel.deb
Files: 
 096d983dcd56905b8d35a1a109dcd742 228326 devel optional dbus_1.2.1-5+lenny1_armel.deb
 b67421a112b6bf92b47246c2ebd4618d 63572 x11 optional dbus-x11_1.2.1-5+lenny1_armel.deb
 64f4b077e7457a400ad88b8cfd6d9b57 146562 libs optional libdbus-1-3_1.2.1-5+lenny1_armel.deb
 89ddd32404daff070f43848aad9369c3 239468 libdevel optional libdbus-1-dev_1.2.1-5+lenny1_armel.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iQEcBAEBAgAGBQJKRgxkAAoJECIIoQCMVaAcyvsH/iw10cwrAFG7NQuVOLif28oY
mL8JB1BeP/eBoAIQt3lumNwL27lq6/f2hR+xJUZF/UCDHUDk+nCeCf6SJvVNZS7K
89umvRPfTFLMSIPdvTJI6tMu+etJ2rzvSoVHSS5zAgnbjCgxbEOtpMeSvdMMaibz
elGOSBblIq/a0TYywjeHKzIwjhOEKfVx3eJ0SS3KvBvhyT7m6G0ekwu2PpU/VeON
THWgjqbmyRVqJH2/WgZvSC6PMu+zrNvPKzAE6wt+VEIb60wR+aj4nuHxOg85ROBg
IGTol65iYMGqg5d5dSZnmKtLIUoKjtvr/gg23dQZH7T+qxcfkVfrZdzjMYcMCIg=
=5TRK
-----END PGP SIGNATURE-----