Date: Fri, 16 Feb 1996 13:08:45 -0800 (PST) From: "Jonathan M. Bresler" <jmb> To: ghelmer@alpha.dsu.edu (Guy Helmer) Cc: freebsd-security@freebsd.org Subject: Re: named update Message-ID: <199602162108.NAA06101@freefall.freebsd.org> In-Reply-To: <Pine.OSF.3.91.960216090524.4301D-100000@alpha.dsu.edu> from "Guy Helmer" at Feb 16, 96 09:15:53 am
next in thread | previous in thread | raw e-mail | index | archive | help
Guy Helmer wrote: > > Does anyone know the named version details surrounding the named problem > that CERT just reported? I just don't know which version tries to close > up the hole. Is named in 2.0.5 and 2.1.0 a vulnerable version? recent cert advisory regarding BIND-4.9.3 teh problem was buffer overflow hitting the stack during a recvfrom system call. the patch is available from paul vixie its called Patch1 dont have the exact reference here the patch changed a total of two calls to recvfrom() jmb
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199602162108.NAA06101>