From owner-freebsd-ports@FreeBSD.ORG Wed Jul 9 18:24:13 2008 Return-Path: Delivered-To: ports@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3B3651065675; Wed, 9 Jul 2008 18:24:13 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from tarsier.delphij.net (unknown [IPv6:2001:470:1f03:2c9::2]) by mx1.freebsd.org (Postfix) with ESMTP id D2EE58FC20; Wed, 9 Jul 2008 18:24:12 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from tarsier.geekcn.org (unknown [211.166.10.233]) (using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by tarsier.delphij.net (Postfix) with ESMTPS id 07EE728448; Thu, 10 Jul 2008 02:24:12 +0800 (CST) Received: from localhost (unknown [211.166.10.233]) by tarsier.geekcn.org (Postfix) with ESMTP id BD118EC5666; Thu, 10 Jul 2008 02:24:11 +0800 (CST) X-Virus-Scanned: amavisd-new at geekcn.org Received: from tarsier.geekcn.org ([211.166.10.233]) by localhost (mail.geekcn.org [211.166.10.233]) (amavisd-new, port 10024) with ESMTP id UCe3JL+afexE; Thu, 10 Jul 2008 02:23:59 +0800 (CST) Received: from charlie.delphij.net (71.5.7.139.ptr.us.xo.net [71.5.7.139]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by tarsier.geekcn.org (Postfix) with ESMTPSA id B2782EB52B3; Thu, 10 Jul 2008 02:23:58 +0800 (CST) DomainKey-Signature: a=rsa-sha1; s=default; d=delphij.net; c=nofws; q=dns; h=message-id:date:from:reply-to:organization:user-agent: mime-version:to:cc:subject:references:in-reply-to: x-enigmail-version:openpgp:content-type:content-transfer-encoding; b=sVlW0xY8KjxXWh3eN4xWiWogqFtiyuNmTRfqJFLolGc5ex5d7pDbz1a33yxXcPTrA wWBw3H8hX/IhrQflgRgUA== Message-ID: <4875023C.6030109@delphij.net> Date: Wed, 09 Jul 2008 11:23:56 -0700 From: Xin LI Organization: The FreeBSD Project User-Agent: Thunderbird 2.0.0.14 (X11/20080616) MIME-Version: 1.0 To: Dennis Yusupoff References: <1471888212.20080709162207@mail.ru> In-Reply-To: <1471888212.20080709162207@mail.ru> X-Enigmail-Version: 0.95.6 OpenPGP: id=18EDEBA0; url=http://www.delphij.net/delphij.asc Content-Type: text/plain; charset=windows-1251; format=flowed Content-Transfer-Encoding: 7bit Cc: ports@FreeBSD.org, DougB@FreeBSD.org Subject: Re: Critical vulnerability patch need in BINDx ports X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: d@delphij.net List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Jul 2008 18:24:13 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dennis Yusupoff wrote: | Hello, Doug. | | I hope, you've already seen patch for BINDx, that close critical | vulnerability. | Could you register it in your FreeBSD-port(s)? | | http://www.isc.org/index.pl?/sw/bind/index.php | === | Index: inet_network.c | diff -u inet_network.c:1.5 inet_network.c:1.6 | --- inet_network.c:1.5 Wed Apr 27 04:56:21 2005 | +++ inet_network.c Tue Jan 15 04:02:01 2008 | @@ -84,9 +84,9 @@ | } | if (!digit) | return (INADDR_NONE); | + if (pp >= parts + 4 || val > 0xffU) | + return (INADDR_NONE); | if (*cp == '.') { | - if (pp >= parts + 4 || val > 0xffU) | - return (INADDR_NONE); | *pp++ = val, cp++; | goto again; | } | === This is for BIND8... Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iEYEARECAAYFAkh1AjwACgkQi+vbBBjt66DO/ACdEbCx9pp4B1E7nro1VcWSNAo0 vvcAmQGZY2t86DQfaFfwNxCA8q0RGBsF =X3pp -----END PGP SIGNATURE-----