-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 18 Jun 2009 06:12:34 +0200
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev
Architecture: alpha
Version: 1.2.1-5+lenny1
Distribution: stable-security
Urgency: high
Maintainer: alpha Build Daemon (goetz) <buildd_alpha-goetz@buildd.debian.org>
Changed-By: Michael Biebl <biebl@debian.org>
Description: 
 dbus       - simple interprocess messaging system
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system
 libdbus-1-dev - simple interprocess messaging system (development headers)
Closes: 532720
Changes: 
 dbus (1.2.1-5+lenny1) stable-security; urgency=high
 .
   * debian/patches/52-CVE-2009-1189.patch
     - Security: The _dbus_validate_signature_with_reason function
       (dbus-marshal-validate.c) uses incorrect logic to validate a basic type,
       which allows remote attackers to spoof a signature via a crafted key.
       NOTE: this is due to an incorrect fix for CVE-2008-3834
       Closes: #532720
       Fixes: CVE-2009-1189
   * Urgency high for the security fix.
Checksums-Sha1: 
 452f4d28b80c995bf13419f8a4ef285a8dd1973a 380740 dbus_1.2.1-5+lenny1_alpha.deb
 1805bcf4838931ab12c568cd02f6fa679e474c8b 66942 dbus-x11_1.2.1-5+lenny1_alpha.deb
 42904cf0752e08209d54c13ca4991a63796d76ac 170160 libdbus-1-3_1.2.1-5+lenny1_alpha.deb
 9e6cc6de07318b4ff631d7749a2c2e630d0528ab 290338 libdbus-1-dev_1.2.1-5+lenny1_alpha.deb
Checksums-Sha256: 
 f02a1408873d1f299b46b6714af4cde22a99d9d54b6210209828cdaad2c689fc 380740 dbus_1.2.1-5+lenny1_alpha.deb
 0acf726a1e9d89bb7796fc8d57900cc96a457e3082fe5076e06f3fb4161d491d 66942 dbus-x11_1.2.1-5+lenny1_alpha.deb
 79749e530f623cd1e3c228369417b8b3f0fc30614ccb7685529c239090ce71db 170160 libdbus-1-3_1.2.1-5+lenny1_alpha.deb
 ea75b1156a0948ac038a0528bafd5900a956aa33a96b3587529ec42ec819445d 290338 libdbus-1-dev_1.2.1-5+lenny1_alpha.deb
Files: 
 b75e7906989484738737bc2e5e6bf66a 380740 devel optional dbus_1.2.1-5+lenny1_alpha.deb
 c810abd2e002daefa1f24942367208ce 66942 x11 optional dbus-x11_1.2.1-5+lenny1_alpha.deb
 810c545ad2bf6212fcb745f10f3d39c9 170160 libs optional libdbus-1-3_1.2.1-5+lenny1_alpha.deb
 fa8f5deeed2593a790283210375bde43 290338 libdevel optional libdbus-1-dev_1.2.1-5+lenny1_alpha.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iQEcBAEBAgAGBQJKRgxkAAoJECIIoQCMVaAcXW8H/2gij//K22nU8fp/R8Ns+FOM
o1Wcd0nAGy5tEQ/+VLFlDyrxHCTmGkcsA/xElFMx0FUmjrFDfFgGXnS/JXq19qj6
BimHyTMNqlLohsgslWWFyO3hrigX/z46MB8Yd+ISTYIbV598JVq8ODlJJwDWhBCe
IxFjU9iGBTsvzkuIwdLegGaA1eyIZgKGZfYdZiPcQ88EzroZfJCfn6Id3scdy/5r
vkrWSaHrqV7PHy1qpZNKQRZtt1EzhY7cjMwTh6HsfHleojb4tTNMdbo7eGKETXTK
mdlMgFL4JcvysOixTXoypV8jwBoYHddldguQ2bco0vAOVwRpT1dKMHuMzisu7Uc=
=Pfrb
-----END PGP SIGNATURE-----