Date: Sat, 29 Jun 2002 17:18:08 -0700 (PDT) From: Doug Barton <DougB@FreeBSD.org> To: Brett Glass <brett@lariat.org> Cc: Pete Ehlke <pde@rfc822.net>, <security@FreeBSD.org> Subject: Re: libc flaw: BIND 9 closes most holes but also opens one Message-ID: <20020629171611.S5428-100000@master.gorean.org> In-Reply-To: <4.3.2.7.2.20020629180311.02b5b2d0@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 29 Jun 2002, Brett Glass wrote: > At 03:56 PM 6/29/2002, Doug Barton wrote: > > >You quoted the second page. The URL I left in the quotation above is the > >announcement for 8.2.6, which says: > > > >Highlights vs. 8.2.5 > > Security Fix libbind. All applications linked against libbind > > need to relinked. > > So? That's not the version of libbind that's in 9.2.1. The version > in 9.2.1 is vulnerable; I've checked the source. Once again, no one is arguing against that point. Yes, the version of libbind in 9.2.1 is vulnerable. What you have said repeatedly, and what is demonstrably false, is that the only place libbind is fixed is in 8.3.3. It is also fixed in 8.2.6. Now please let this drop.... you're not adding anything useful to the topic. Doug To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020629171611.S5428-100000>