CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2013/03/28 03:19:23
Modified files:
net/isc-bind : Tag: OPENBSD_5_2 Makefile distinfo
Added files:
net/isc-bind/patches: Tag: OPENBSD_5_2 patch-lib_dns_rootns_c
Log message:
5.2 SECURITY update for ports/net/isc-bind (affects 9.7 and up), CVE-2013-2266
"A critical defect in BIND 9 allows an attacker to cause excessive memory
consumption in named or other programs linked to libdns.
The problem is encountered when a program compiled to link to libdns
receives a maliciously-constructed regular expression via any of several
delivery methods."
https://kb.isc.org/article/AA-0087
(sync root server hints while there).
