From owner-freebsd-ports@FreeBSD.ORG  Wed Jul  9 14:37:19 2008
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B1BBD1065673;
	Wed,  9 Jul 2008 14:37:19 +0000 (UTC)
	(envelope-from denissia@mail.ru)
Received: from mx28.mail.ru (mx28.mail.ru [194.67.23.67])
	by mx1.freebsd.org (Postfix) with ESMTP id 401398FC1A;
	Wed,  9 Jul 2008 14:37:19 +0000 (UTC)
	(envelope-from denissia@mail.ru)
Received: from mx40.mail.ru (mx40.mail.ru [194.67.23.36])
	by mx28.mail.ru (mPOP.Fallback_MX) with ESMTP id 8F1A933546D;
	Wed,  9 Jul 2008 16:22:16 +0400 (MSD)
Received: from [85.249.167.249] (port=47958 helo=dyr.homelink.ru)
	by mx40.mail.ru with psmtp 
	id 1KGYgW-0006rn-00; Wed, 09 Jul 2008 16:22:12 +0400
Date: Wed, 9 Jul 2008 16:22:07 +0400
From: Dennis Yusupoff <denissia@mail.ru>
X-Mailer: The Bat! (v4.0.24) Professional
X-Priority: 3 (Normal)
Message-ID: <1471888212.20080709162207@mail.ru>
To: DougB@FreeBSD.org
MIME-Version: 1.0
Content-Type: text/plain; charset=windows-1251
Content-Transfer-Encoding: 8bit
X-Spam: Not detected
X-Mras: OK
Cc: ports@FreeBSD.org
Subject: Critical vulnerability patch need in BINDx ports
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Dennis Yusupoff <denissia@mail.ru>
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jul 2008 14:37:19 -0000

Hello, Doug.

I hope, you've already seen patch for BINDx, that close critical
vulnerability.
Could you register it in your FreeBSD-port(s)?

http://www.isc.org/index.pl?/sw/bind/index.php
===
Index: inet_network.c
diff -u inet_network.c:1.5 inet_network.c:1.6
--- inet_network.c:1.5  Wed Apr 27 04:56:21 2005
+++ inet_network.c      Tue Jan 15 04:02:01 2008
@@ -84,9 +84,9 @@
        }
        if (!digit)
                return (INADDR_NONE);
+       if (pp >= parts + 4 || val > 0xffU)
+               return (INADDR_NONE);
        if (*cp == '.') {
-               if (pp >= parts + 4 || val > 0xffU)
-                       return (INADDR_NONE);
                *pp++ = val, cp++;
                goto again;
        }
===

---
With best regards,
sysadmin of Ozerki.Net
Dennis Yusupoff