From owner-freebsd-security@FreeBSD.ORG  Sun Jul 28 09:03:45 2013
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 2DE17C65
 for <freebsd-security@freebsd.org>; Sun, 28 Jul 2013 09:03:45 +0000 (UTC)
 (envelope-from kpaasial@gmail.com)
Received: from mail-qe0-x233.google.com (mail-qe0-x233.google.com
 [IPv6:2607:f8b0:400d:c02::233])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id E5DC925E9
 for <freebsd-security@freebsd.org>; Sun, 28 Jul 2013 09:03:44 +0000 (UTC)
Received: by mail-qe0-f51.google.com with SMTP id nd7so730810qeb.24
 for <freebsd-security@freebsd.org>; Sun, 28 Jul 2013 02:03:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :content-type; bh=qOddO7CrKRJ+V9spUsyyoOSXeN5FnL5CgN5zIDGit0c=;
 b=gSZtmA3YnWpwjxvGjjmQD5oAL7Wbyx/XGShdkFHyO9Jol7l7UwqkcQN7j1Tl1myKqz
 XWLKaiNQsdiwstDEC47s+kHpmcQRgSKeeqK6t4tpHMQzjMRVTsrIrqStsbYXeI+GsTA+
 NRah6PwblFUl/M4OitO5hk5m6FKH5kNR2jQi3bJOtAG5qpu26/mzcQsTbyl8ERp9I3SV
 SpigqdujVt5cjrCmbL0tUZ8e/RZBaetfHG/n9FwcBKty4z5RBQIxIH44tgIr8UjFu212
 fhu/poKHszsoot1VSN9dfTaTepj34XTHDUE/+b9msJopoKoMeMG/NII7/6sD7aHqZPt2
 SREA==
MIME-Version: 1.0
X-Received: by 10.224.19.198 with SMTP id c6mr38923304qab.2.1375002223351;
 Sun, 28 Jul 2013 02:03:43 -0700 (PDT)
Received: by 10.224.78.194 with HTTP; Sun, 28 Jul 2013 02:03:43 -0700 (PDT)
In-Reply-To: <20130727210809.GA70513@lonrach.local>
References: <20130726230549.GB64252@lonrach.local>
 <CAMCLrkF8u-UmMnfG9=RkGMWYZn+L4vK7Mg1XW_pa9HbdLx4r8w@mail.gmail.com>
 <20130727085458.GB68862@lonrach.local>
 <46029EF7-D574-4953-AE8D-4BA79F5295BB@plosh.net>
 <20130727210809.GA70513@lonrach.local>
Date: Sun, 28 Jul 2013 12:03:43 +0300
Message-ID: <CA+7WWSejypEnci4vrDm=sNDP5RZyojsHHFb+JYsHxLjKQR4CyA@mail.gmail.com>
Subject: Re: bind9 and CVE-2013-4854
From: Kimmo Paasiala <kpaasial@gmail.com>
To: freebsd-security <freebsd-security@freebsd.org>
Content-Type: text/plain; charset=UTF-8
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 28 Jul 2013 09:03:45 -0000

A question related to this:

What is it that prevents BIND from being removed from the base when
there are very well working ports of BIND already that are far easier
to update when vulnerabilities are found. Is it the dig(1), host(1)
and nslookup(1) utilities?

-Kimmo