On Fri, 11 Jul 2008, Matthew Dillon wrote: > We have a security issue with BIND that needs to be resolved, could > someone take on that task? I would prefer that just the patch be > committed to the current code base if possible, I do not want to bring > in a whole new BIND this late in the game.
The patch for the issues from 9.3.5 to 9.3.5-P1 (minus win32 and doc) applies fine to your HEAD contrib/bind-9.3 (which is 9.3.4-P1) other than a few RCS ident conflicts. The original patch is on pkgbox at /home/reed/9.3.5-P1.patch and the updated src is at /home/reed/dragonfly/src/contrib/bind-9.3/ I am doing a test build now on HEAD. Should I be testing with a specific tag? I have tested the security fixes on DragonFly a few times (watching random source ports) but not built from DragonFly source yet.
