From: Jay Summers <jay@xxxxxxxxxxxxxxxxxxxxx>
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] New bind problem - libbind buffer overflow
Date: Wed, 10 Jul 2002 09:38:14 -0500
> I have just been doing our weekly security review and came across this
on the
> bind site.
>
> http://www.isc.org/products/BIND/bind-security.html
>
> New problem with all versions prior to 8.3.3 ( last cobalt patch took us
up to
> 8.2.3 ) Currently there are not known to be any exploits available
but......
> its only a matter of time i suppose!
I've already upgraded my Bind to 8.3.3 from source. It went well with no
ill
side effects. Gerald Waugh posted some instructions on the Cobalt-Users
list.
> Is anyone else aware of this? + Is there any one else more linux /
security
> wise that can advise about the potential seriousness of this problem.
You should follow this thread from last week. It's definitely more than
just
Bind.
http://list.cobalt.com/pipermail/cobalt-security/2002-July/005689.html
HTH,
j
--
http://www.bizmanuals.com
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security