MESSAGE
DATE | 2003-03-06 |
FROM | Ruben Safir
|
SUBJECT | Subject: [hangout] [Mark_Andrews@isc.org: Internet Software Consortium Security Advisory: 5 March 2003]
|
From owner-hangout-desteny-at-mrbrklyn.com Thu Mar 6 00:37:20 2003 Received: from www2.mrbrklyn.com (localhost [127.0.0.1]) by mrbrklyn.com (8.12.3/8.11.2/SuSE Linux 8.11.1-0.5) with ESMTP id h265bKxt022339 for ; Thu, 6 Mar 2003 00:37:20 -0500 Received: (from mdom-at-localhost) by www2.mrbrklyn.com (8.12.3/8.12.3/Submit) id h265bKmv022338 for hangout-desteny; Thu, 6 Mar 2003 00:37:20 -0500 X-Authentication-Warning: www2.mrbrklyn.com: mdom set sender to owner-hangout-at-www2.mrbrklyn.com using -f Received: from www2.mrbrklyn.com (localhost [127.0.0.1]) by mrbrklyn.com (8.12.3/8.11.2/SuSE Linux 8.11.1-0.5) with ESMTP id h265bJxt022333 for ; Thu, 6 Mar 2003 00:37:19 -0500 Received: (from ruben-at-localhost) by www2.mrbrklyn.com (8.12.3/8.12.3/Submit) id h265bJff022332 for hangout-at-nylxs.com; Thu, 6 Mar 2003 00:37:19 -0500 Date: Thu, 6 Mar 2003 00:37:19 -0500 From: Ruben Safir To: hangout-at-nylxs.com Subject: [hangout] [Mark_Andrews-at-isc.org: Internet Software Consortium Security Advisory: 5 March 2003] Message-ID: <20030306053719.GA22323-at-www2.mrbrklyn.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.27i Sender: owner-hangout-at-mrbrklyn.com Precedence: bulk Reply-To: Ruben Safir List: New Yorkers Linux Scene Admin: To unsubscribe send unsubscribename-at-domian.com to hangout-request-at-www2.mrbrklyn.com X-Keywords: X-UID: 10302 Status: RO Content-Length: 3235 Lines: 101
----- Forwarded message from Mark_Andrews-at-isc.org -----
X-Original-To: bind-announce-at-rc3.isc.org To: bind-announce-at-isc.org From: Mark_Andrews-at-isc.org Subject: Internet Software Consortium Security Advisory: 5 March 2003 Date: Thu, 06 Mar 2003 13:34:55 +1100 X-Approved-By: Mark_Andrews-at-isc.org X-ecartis-version: Ecartis v1.0.0 Errors-To: bind-announce-bounce-at-isc.org X-original-sender: Mark_Andrews-at-isc.org Precedence: bulk List-unsubscribe: List-Id: X-List-ID:
-----BEGIN PGP SIGNED MESSAGE-----
Internet Software Consortium Security Advisory. Status Update 5 March 2003
BIND 9.2.2 was released which contains fixes for previously announced vulnerabilities.
These were a remote buffer overflow documented in CERT advisory [CERT CA-2002-19] and enforcement of the minimum OpenSSL version [CERT CA-2002-23].
http://www.cert.org/advisories/CA-2002-19.html http://www.cert.org/advisories/CA-2002-23.html
[CERT CA-2002-19]:
BIND 9.2.0 and BIND 9.2.1 needs to be upgraded if you have not already applied the workaround listed in [CERT CA-2002-19] and you enabled libbind by specifying "configure --enable-libbind" when you built BIND 9.2.0 or BIND 9.2.1.
[CERT CA-2002-23]:
BIND 9.[01].x needs to be upgraded if you have not applied the workaround listed in [CA-2002-23]. BIND 9.2.2 enforces a minimum OpenSSL version at compile time.
BIND 9.2.0 and BIND 9.2.1 need to be upgraded if you built BIND with a vulnerable version of OpenSSL, "configure --with-openssl". BIND 9.2.2 enforces a minimum OpenSSL version at compile time.
You can test to see if BIND was built with OpenSSL by running:
dnssec-keygen -a rsa -b 512 -n zone foo
If the command returns an error message which contains "built with no crypto support" then BIND was NOT linked against OpenSSL. This does NOT check the OpenSSL version in use.
If you are in doubt about your current BIND status upgrade.
The current BIND version can be found via: http://www.isc.org/products/BIND/
The current BIND security page can be found via: http://www.isc.org/products/BIND/bind-security.html
-----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.0i for non-commercial use Charset: noconv
iQCVAwUBPmazLW2DN4pRurLtAQGVQQP+LceoGeFbjX7tbFe6v/BGuaqGLrxMvM9o 5IhC3dg96yXfb4L72RaCQHQINNHxRRGUQNCTnlbgc5e8KYSLUWdRVC2r/0ztbmj8 yZBK59/4SFw5VFMwycmFjbotuO9F2kqHX5qyc8rSi6rzxLOOW4zWL4Ie0EEk6v8Y lCXGRGqC2PQ= =oLnr -----END PGP SIGNATURE-----
----- End forwarded message -----
-- __________________________ Brooklyn Linux Solutions __________________________ DRM is THEFT - We are the STAKEHOLDERS http://fairuse.nylxs.com
http://www.mrbrklyn.com - Consulting http://www.inns.net <-- Happy Clients http://www.nylxs.com - Leadership Development in Free Software http://www2.mrbrklyn.com/resources - Unpublished Archive or stories and articles from around the net http://www2.mrbrklyn.com/downtown.html - See the New Downtown Brooklyn....
1-718-382-0585 ____________________________ NYLXS: New Yorker Free Software Users Scene Fair Use - because it's either fair use or useless.... NYLXS is a trademark of NYLXS, Inc
|
|