Re: libc flaw: BIND 9 closes most holes but also opens one
From: Doug Barton (DougB@FreeBSD.org)
Date: 06/30/02
- Next message: Jack L. Stone: "Re: Sshd fix"
- Previous message: Doug Barton: "Re: named 8.3.2-T1B vulnerable?"
- In reply to: Brett Glass: "Re: libc flaw: BIND 9 closes most holes but also opens one"
- Next in thread: Mark.Andrews@isc.org: "Re: libc flaw: BIND 9 closes most holes but also opens one"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 29 Jun 2002 17:18:08 -0700 (PDT) From: Doug Barton <DougB@FreeBSD.org> To: Brett Glass <brett@lariat.org>
On Sat, 29 Jun 2002, Brett Glass wrote:
> At 03:56 PM 6/29/2002, Doug Barton wrote:
>
> >You quoted the second page. The URL I left in the quotation above is the
> >announcement for 8.2.6, which says:
> >
> >Highlights vs. 8.2.5
> > Security Fix libbind. All applications linked against libbind
> > need to relinked.
>
> So? That's not the version of libbind that's in 9.2.1. The version
> in 9.2.1 is vulnerable; I've checked the source.
Once again, no one is arguing against that point. Yes, the version of
libbind in 9.2.1 is vulnerable.
What you have said repeatedly, and what is demonstrably false, is that the
only place libbind is fixed is in 8.3.3. It is also fixed in 8.2.6. Now
please let this drop.... you're not adding anything useful to the topic.
Doug
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Jack L. Stone: "Re: Sshd fix"
- Previous message: Doug Barton: "Re: named 8.3.2-T1B vulnerable?"
- In reply to: Brett Glass: "Re: libc flaw: BIND 9 closes most holes but also opens one"
- Next in thread: Mark.Andrews@isc.org: "Re: libc flaw: BIND 9 closes most holes but also opens one"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
