Date: Wed, 15 May 2002 10:54:53 +0900 From: Makoto Matsushita <matusita@jp.FreeBSD.org> To: brett@lariat.org Cc: security@FreeBSD.org Subject: Re: Patch/Announcement for DHCPD remote root hole? Message-ID: <20020515105453K.matusita@jp.FreeBSD.org> In-Reply-To: <4.3.2.7.2.20020509175155.024efc00@nospam.lariat.org> References: <4.3.2.7.2.20020509175155.024efc00@nospam.lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
brett> Are a patch and an announcement for the ISC DHCPD format string brett> vulnerability/remote root hole imminent? From FreeBSD-SN-02:02: > Port name: isc-dhcp3 > Affected: versions < dhcp-3.0.1.r8_1 > Status: Fixed > Format string vulnerability when logging DNS-update request transactions. > <URL:http://www.cert.org/advisories/CA-2002-12.html> > <URL:http://www.ngsec.com/docs/advisories/NGSEC-2002-2.txt> Is it what you want? ports/net/isc-dhcp3 is already fixed, updating to dhcp-3.0.1.r9. -- - Makoto `MAR' Matsushita To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020515105453K.matusita>