i386/126096: bind patch/upgrade

Usman Ahmad usman.ahmad at pk.link.net
Wed Jul 30 13:40:05 UTC 2008


>Number:         126096
>Category:       i386
>Synopsis:       bind patch/upgrade
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    freebsd-i386
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Wed Jul 30 13:40:04 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator:     Usman Ahmad
>Release:        FreeBSD 4.2
>Organization:
LINKdotNET
>Environment:
BSD/OS monitornew.wol.net.pk 4.2 BSDI BSD/OS 4.2 Kernel #1: Sat Oct 28 16:31:23 PKT 2006     netadmin at monitornew.wol.net.pk:/usr/src/sys/compile/LOCAL  i386
>Description:
As per our ISC updates, there is a bug in old bind versions. Please refer to
http://www.isc.org/index.pl?/sw/bind/bind-security.php. So i have tried to update all of my current DNS severs having FreeBSD 4.2 but it is not fixed. 

First, the default bind version was running as mentioned below:

bash-2.02# named -v
named 8.2.3-REL Thu Nov 14 15:56:27 CST 2002
        patm at patches42default.bsdi.com:/patches/4.2/M420-030/source/core_contrib/bind/src/bin/named

but there was no patch/update available for this version then i have compiled the bind latest version i.e; BIND 9.4.1-P1 but when i check it for server vulnerability, it response me the server is POOR. 


Please guide me that how can i fix this BUG at my FreeBSD 4.2 server. 

Regards,
Usman Ahmad
>How-To-Repeat:

>Fix:


>Release-Note:
>Audit-Trail:
>Unformatted:


More information about the freebsd-i386 mailing list