Date: Thu, 26 Jul 2007 17:54:54 +0300 From: Nikolay Pavlov <qpadla@gmail.com> To: freebsd-stable@freebsd.org, Stephen.Clark@seclark.us Cc: stable@freebsd.org, Doug Barton <dougb@freebsd.org>, Steven Hartland <killing@multiplay.co.uk> Subject: Re: bind exploit, patch expected? Message-ID: <200707261755.02806.qpadla@gmail.com> In-Reply-To: <46A88AB4.1010808@seclark.us> References: <01e101c7cecb$380e6960$b6db87d4@multiplay.co.uk> <46A78AB3.9090805@FreeBSD.org> <46A88AB4.1010808@seclark.us>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart3893482.PHZlgSr9CP Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Thursday 26 July 2007 14:51:16 Stephen Clark wrote: > Doug Barton wrote: > >Steven Hartland wrote: > >>I assume the security team are already working on this but > >>cant hurt to ask: > > > >Before you ask questions on a public list it's generally considered > >polite to do a little checking yourself, especially in an open source > >project. As Mike pointed out, the secteam had already addressed this > >issue on -security, and I had already followed up in detail regarding > >the upgrade plans. > > > >In addition, at the time you posted the updates had all been done in > >the ports, HEAD (-current), and RELENG_[56] (5 and 6-stable). > > > >In any case, it's good that you're on top of your security > >announcements, and I'm glad to say that this time anyway we're one > >step ahead. :) > > > >Doug > > Interesting - I just checked the FreeBSD.org security page and don't see > any indication of > a patch to fix the vulnerability for 6.1. > > Steve This is because RELENG_[56] is not a 6.1 RTFM http://www.freebsd.org/doc/en_US.ISO8859-1/articles/releng/release-proc.html =2D-=20 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D =2D Best regards, Nikolay Pavlov. <<<----------------------------- =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D --nextPart3893482.PHZlgSr9CP Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQBGqLXG/2R6KvEYGaIRAsflAJ94qAo3DxngANT4/M9Gfy1TwZcymwCeP0nS uhWZKD1MnuDSByexg6N0/PM= =RSRl -----END PGP SIGNATURE----- --nextPart3893482.PHZlgSr9CP--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200707261755.02806.qpadla>