-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sun, 27 Oct 2013 23:38:09 +0100
Source: quagga
Binary: quagga quagga-dbg quagga-doc
Architecture: mips
Version: 0.99.21-4+wheezy2
Distribution: wheezy-security
Urgency: high
Maintainer: mips Build Daemon (corelli) <buildd_mips-corelli@buildd.debian.org>
Changed-By: Christian Hammers <ch@debian.org>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-dbg - BGP/OSPF/RIP routing daemon (debug symbols)
 quagga-doc - documentation files for quagga
Closes: 726724
Changes: 
 quagga (0.99.21-4+wheezy2) stable-security; urgency=high
 .
   * Applied a patch that fixes the following security issue:
     "ospfd: CVE-2013-2236, stack overrun in apiserver
 .
     the OSPF API-server (exporting the LSDB and allowing announcement of
     Opaque-LSAs) writes past the end of fixed on-stack buffers.  This leads
     to an exploitable stack overflow.
 .
     For this condition to occur, the following two conditions must be true:
     - Quagga is configured with --enable-opaque-lsa
     - ospfd is started with the "-a" command line option"
     Closes: #726724
Checksums-Sha1: 
 bb58a4e2e6714918b0a2cd6e420556756d7a7c57 1639898 quagga_0.99.21-4+wheezy2_mips.deb
 9b67119d290c378ce747f4211e67f1584fa4bfea 1897256 quagga-dbg_0.99.21-4+wheezy2_mips.deb
Checksums-Sha256: 
 582f1f8ce01ac55fc92b373b3d03df39a56dce836949ed6c76324eeceedaa283 1639898 quagga_0.99.21-4+wheezy2_mips.deb
 d116b454e3e1e60486573862505d710d6222ee62aedcf7363fc46859e02a8522 1897256 quagga-dbg_0.99.21-4+wheezy2_mips.deb
Files: 
 db1e00f3592866f0797ae8e7960cb9a8 1639898 net optional quagga_0.99.21-4+wheezy2_mips.deb
 de857d45487bef3677f786b40d03ec64 1897256 debug extra quagga-dbg_0.99.21-4+wheezy2_mips.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=lVgv
-----END PGP SIGNATURE-----