Critical vulnerability patch need in BINDx ports
Xin LI
delphij at delphij.net
Wed Jul 9 18:24:13 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Dennis Yusupoff wrote:
| Hello, Doug.
|
| I hope, you've already seen patch for BINDx, that close critical
| vulnerability.
| Could you register it in your FreeBSD-port(s)?
|
| http://www.isc.org/index.pl?/sw/bind/index.php
| ===
| Index: inet_network.c
| diff -u inet_network.c:1.5 inet_network.c:1.6
| --- inet_network.c:1.5 Wed Apr 27 04:56:21 2005
| +++ inet_network.c Tue Jan 15 04:02:01 2008
| @@ -84,9 +84,9 @@
| }
| if (!digit)
| return (INADDR_NONE);
| + if (pp >= parts + 4 || val > 0xffU)
| + return (INADDR_NONE);
| if (*cp == '.') {
| - if (pp >= parts + 4 || val > 0xffU)
| - return (INADDR_NONE);
| *pp++ = val, cp++;
| goto again;
| }
| ===
This is for BIND8...
Cheers,
- --
Xin LI <delphij at delphij.net> http://www.delphij.net/
FreeBSD - The Power to Serve!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (FreeBSD)
iEYEARECAAYFAkh1AjwACgkQi+vbBBjt66DO/ACdEbCx9pp4B1E7nro1VcWSNAo0
vvcAmQGZY2t86DQfaFfwNxCA8q0RGBsF
=X3pp
-----END PGP SIGNATURE-----
More information about the freebsd-ports
mailing list