From:
http://search.cpan.org/src/OLAF/Net-DNS-0.63/Changes
Fix rt.cpan.org #30316 Security issue with Net::DNS Resolver.
Net/DNS/RR/A.pm in Net::DNS 0.60 build 654 allows remote attackers to
cause a denial of service (program "croak") via a crafted DNS
response (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6341). Packet
parsing routines are now enclosed in eval blocks to trap exception
and avoid premature termination of user program.
Fix: Update to 0.63.
Note: to Freebsd Ports SpamAssassin users: A minor update to SA will include
dependency on 0.63. pt-Net-DNS was updated on ports tree 10 days ago:
http://www.freebsd.org/cgi/query-pr.cgi?pr=120702
An official update to SA ports version 3.4.2_3 will be send to ports shortly
Hmmmmm.
Is the post above from Scheidell a BSD *port* update only related issue
posting ???
There have been 3 updates to perl-Net-DNS in the last 8 months since .60
We have been using .63 since about Feb 21 2008
- rh
