From owner-cvs-src@FreeBSD.ORG  Fri Aug  3 16:59:58 2007
Return-Path: <owner-cvs-src@FreeBSD.ORG>
Delivered-To: cvs-src@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5E39116A421;
	Fri,  3 Aug 2007 16:59:58 +0000 (UTC)
	(envelope-from simon@benji.nitro.dk)
Received: from mx.nitro.dk (zarniwoop.nitro.dk [83.92.207.38])
	by mx1.freebsd.org (Postfix) with ESMTP id 0613E13C49D;
	Fri,  3 Aug 2007 16:59:57 +0000 (UTC)
	(envelope-from simon@benji.nitro.dk)
Received: from benji.nitro.dk (unknown [192.168.3.39])
	by mx.nitro.dk (Postfix) with ESMTP id 8DC451E8C08;
	Fri,  3 Aug 2007 16:59:56 +0000 (UTC)
Received: by benji.nitro.dk (Postfix, from userid 2000)
	id D2182FE95; Fri,  3 Aug 2007 19:00:15 +0200 (CEST)
Date: Fri, 3 Aug 2007 19:00:15 +0200
From: "Simon L. Nielsen" <simon@FreeBSD.org>
To: Alexey Dokuchaev <danfe@FreeBSD.org>
Message-ID: <20070803170015.GF968@zaphod.nitro.dk>
References: <200708012048.l71KmKjg080201@repoman.freebsd.org>
	<20070802084423.GA93647@FreeBSD.org> <46B1ACE0.8050308@FreeBSD.org>
	<20070803152706.GA33159@FreeBSD.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20070803152706.GA33159@FreeBSD.org>
User-Agent: Mutt/1.5.16 (2007-06-09)
Cc: cvs-src@FreeBSD.org, Doug Barton <dougb@FreeBSD.org>, cvs-all@FreeBSD.org,
	src-committers@FreeBSD.org
Subject: Re: cvs commit: src UPDATING src/contrib/bind9/bin/named client.c
	src/contrib/bind9/lib/dns dispatch.c
	src/contrib/bind9/lib/dns/include/dns dispatch.h
	src/contrib/tcpdump print-bgp.c src/etc/rc.d jail src/sys/conf
	newvers.sh
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Aug 2007 16:59:58 -0000

On 2007.08.03 15:27:06 +0000, Alexey Dokuchaev wrote:
> On Thu, Aug 02, 2007 at 03:07:28AM -0700, Doug Barton wrote:
> > Alexey Dokuchaev wrote:
> >
> > > What about RELENG_4, is it going to be fixed, or these bugs are not
> > > applicable to it?  
> > 
> > No and no. Support has been dropped for 4.x, so it's not relevant,
> > even if it had BIND 9 in the base, which it doesn't.
> 
> OK, but what about tcpdump(1)?
> 
> Even so, does it read that 4.X is not vulnerable?

Since FreeBSD 4.X isn't supported by the security team we generally
don't mention it (or even check) if it's vulnerable in advisories
anymore.  That said, for the cases like bind9 etc. where we know that
wasn't in FreeBSD < 5.3 we do mention that (but no guarantees that we
will keep doing that).  There is enough work just handling the
supported versions.

For this particular case I don't know if tcpdump in FreeBSD 4 is
vulnerable - it could be that it isn't since tcpdump has changed a
lot, but I don't care enough to check.

-- 
Simon L. Nielsen
FreeBSD Security Team