kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
freebsd-ports/dns/bind9
History
Doug Barton e8c5f493c1 Update to 9.3.4-P1, which fixes the following: 
The DNS query id generation is vulnerable to cryptographic
analysis which provides a 1 in 8 chance of guessing the next
query id for 50% of the query ids. This can be used to perform
cache poisoning by an attacker.

This bug only affects outgoing queries, generated by BIND 9 to
answer questions as a resolver, or when it is looking up data
for internal uses, such as when sending NOTIFYs to slave name
servers.

All users are encouraged to upgrade.

See also:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926
2007-07-24 22:00:03 +00:00
..
distinfo Update to 9.3.4-P1, which fixes the following: 2007-07-24 22:00:03 +00:00
Makefile Update to 9.3.4-P1, which fixes the following: 2007-07-24 22:00:03 +00:00
pkg-descr
pkg-message
pkg-plist Replace ugly "@unexec rmdir %D... 2>/dev/null || true" with @dirrmtry 2006-01-22 01:55:36 +00:00