Matthew Dillon <dillonapollo.backplane.com> writes:
> My question is simple: Is the named in -stable currently vulnerable or
> has it been fixed? I know the port is fixed. What about the named
> sitting in -stable?

As far as I know, named itself is not vulnerable, but libbind contains
the bug, and software that uses libbind's gethost*() (nothing in the
base system does) is vulnerable.

DES

-- 
Dag-Erling Smorgrav - desofug.org
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]