Hi, bind9 in sid does not include CVE number in its changelog. http://packages.qa.debian.org/b/bind9/news/20100716T094725Z.html Now it's available as CVE-2010-0213. http://www.isc.org/software/bind/advisories/cve-2010-0213 http://security-tracker.debian.org/tracker/source-package/bind9 Please add it to there, thanks. -- Regards, Hideki Yamane henrich @ debian.or.jp/org http://wiki.debian.org/HidekiYamane