DragonFly BSD
DragonFly commits List (threaded) for 2006-09
[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]

cvs commit: src/lib/libisc Makefile dns,resolver.c.patch


From: Simon Schubert <corecode@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 7 Sep 2006 03:06:06 -0700 (PDT)

corecode    2006/09/07 03:06:06 PDT

DragonFly src repository

  Modified files:        (Branch: DragonFly_RELEASE_1_6)
    lib/libisc           Makefile 
  Added files:           (Branch: DragonFly_RELEASE_1_6)
    lib/libisc           dns,resolver.c.patch 
  Log:
  Fix CERT Vulnerability Note VU#697164:
  
  "A flaw exists in the way that some versions of BIND handle recursive queries.
  It is possible for a remote attacker to trigger an INSIST failure by sending
  enough recursive queries that the response to the query arrives after all the
  clients looking for the response have left the recursion queue.
  
  Note that although BIND versions 9.2.x also contain the underlying flaw that
  causes this vulnerability, ISC reports that the vulnerability is not exposed by
  these versions."
  
  Nevertheless, import the patch from ISC BIND 9.2.6-P1
  
  Revision  Changes    Path
  1.7.4.1   +4 -0      src/lib/libisc/Makefile


http://www.dragonflybsd.org/cvsweb/src/lib/libisc/Makefile.diff?r1=1.7&r2=1.7.4.1&f=u



[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]