CVSROOT: /cvs Module name: ports Changes by: st...@cvs.openbsd.org 2013/08/06 14:09:00
Modified files: net/isc-bind : Makefile distinfo Log message: SECURITY update to BIND 9.9.3p2. CVE-2013-4854: A specially crafted query that includes malformed rdata can cause named to terminate with an assertion failure while rejecting the malformed query. Authoritative and recursive servers are equally vulnerable. Intentional exploitation of this condition can cause a denial of service in all nameservers running affected versions of BIND 9. Access Control Lists do not provide any protection from malicious clients.