-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 27 Oct 2013 23:38:09 +0100
Source: quagga
Binary: quagga quagga-dbg quagga-doc
Architecture: powerpc
Version: 0.99.21-4+wheezy2
Distribution: wheezy-security
Urgency: high
Maintainer: powerpc Build Daemon (porpora) <buildd_powerpc-porpora@buildd.debian.org>
Changed-By: Christian Hammers <ch@debian.org>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-dbg - BGP/OSPF/RIP routing daemon (debug symbols)
 quagga-doc - documentation files for quagga
Closes: 726724
Changes: 
 quagga (0.99.21-4+wheezy2) stable-security; urgency=high
 .
   * Applied a patch that fixes the following security issue:
     "ospfd: CVE-2013-2236, stack overrun in apiserver
 .
     the OSPF API-server (exporting the LSDB and allowing announcement of
     Opaque-LSAs) writes past the end of fixed on-stack buffers.  This leads
     to an exploitable stack overflow.
 .
     For this condition to occur, the following two conditions must be true:
     - Quagga is configured with --enable-opaque-lsa
     - ospfd is started with the "-a" command line option"
     Closes: #726724
Checksums-Sha1: 
 7ad8d813da30f83b0e9d8e0d5c7a0c437b92bfe1 1587626 quagga_0.99.21-4+wheezy2_powerpc.deb
 acc262f3ea77e7f11560a64445933b903b813c52 1874422 quagga-dbg_0.99.21-4+wheezy2_powerpc.deb
Checksums-Sha256: 
 fe036ff0b6091a294101e70863d574cac9616cc88f0c67c47e938bee638e9f74 1587626 quagga_0.99.21-4+wheezy2_powerpc.deb
 9aef666222799ae7765fe91533175a57f77b4170127078ab267a4e6b862a4377 1874422 quagga-dbg_0.99.21-4+wheezy2_powerpc.deb
Files: 
 f276b47c88e13326d83de021dd3aa1bb 1587626 net optional quagga_0.99.21-4+wheezy2_powerpc.deb
 9ce4df1c252ff30f8a8c33370bd106f6 1874422 debug extra quagga-dbg_0.99.21-4+wheezy2_powerpc.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=3/qi
-----END PGP SIGNATURE-----