On 2015/07/28 14:04, Stuart Henderson wrote: > CVSROOT: /cvs > Module name: ports > Changes by: [email protected] 2015/07/28 14:04:17 > > Modified files: > net/isc-bind : Tag: OPENBSD_5_7 Makefile distinfo > net/isc-bind/patches: Tag: OPENBSD_5_7 patch-configure_in > > Log message: > Security update to BIND 9.10.2p3 - a failure to reset a value to NULL in > tkey.c > could result in an assertion failure. (CVE-2015-5477) >
An additional part from the release notes Both recursive and authoritative servers are vulnerable to this defect. Additionally, exposure is not prevented by either ACLs or configuration options limiting or denying service because the exploitable code occurs early in the packet handling, before checks enforcing those boundaries.
