diff options
author | Doug Barton <dougb@FreeBSD.org> | 2007-07-24 22:00:03 +0000 |
---|---|---|
committer | Doug Barton <dougb@FreeBSD.org> | 2007-07-24 22:00:03 +0000 |
commit | e8c5f493c1259d585f8b3b7ebb0e1dfdf3a6b2f5 (patch) | |
tree | dac3f0d3da0d25519619e148e33c6db0b59b5b96 /dns/bind94/Makefile | |
parent | - Add vendor patch to address dirtree issue. (diff) |
Update to 9.3.4-P1, which fixes the following:
The DNS query id generation is vulnerable to cryptographic
analysis which provides a 1 in 8 chance of guessing the next
query id for 50% of the query ids. This can be used to perform
cache poisoning by an attacker.
This bug only affects outgoing queries, generated by BIND 9 to
answer questions as a resolver, or when it is looking up data
for internal uses, such as when sending NOTIFYs to slave name
servers.
All users are encouraged to upgrade.
See also:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926
Notes
Notes:
svn path=/head/; revision=196228
Diffstat (limited to 'dns/bind94/Makefile')
0 files changed, 0 insertions, 0 deletions