i386/126096: bind patch/upgrade
Usman Ahmad
usman.ahmad at pk.link.net
Wed Jul 30 13:40:05 UTC 2008
>Number: 126096
>Category: i386
>Synopsis: bind patch/upgrade
>Confidential: no
>Severity: critical
>Priority: high
>Responsible: freebsd-i386
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Wed Jul 30 13:40:04 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator: Usman Ahmad
>Release: FreeBSD 4.2
>Organization:
LINKdotNET
>Environment:
BSD/OS monitornew.wol.net.pk 4.2 BSDI BSD/OS 4.2 Kernel #1: Sat Oct 28 16:31:23 PKT 2006 netadmin at monitornew.wol.net.pk:/usr/src/sys/compile/LOCAL i386
>Description:
As per our ISC updates, there is a bug in old bind versions. Please refer to
http://www.isc.org/index.pl?/sw/bind/bind-security.php. So i have tried to update all of my current DNS severs having FreeBSD 4.2 but it is not fixed.
First, the default bind version was running as mentioned below:
bash-2.02# named -v
named 8.2.3-REL Thu Nov 14 15:56:27 CST 2002
patm at patches42default.bsdi.com:/patches/4.2/M420-030/source/core_contrib/bind/src/bin/named
but there was no patch/update available for this version then i have compiled the bind latest version i.e; BIND 9.4.1-P1 but when i check it for server vulnerability, it response me the server is POOR.
Please guide me that how can i fix this BUG at my FreeBSD 4.2 server.
Regards,
Usman Ahmad
>How-To-Repeat:
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-i386
mailing list