[17604] in bugtraq
Re: BIND 8.2.2-P5 Possible DOS
daemon@ATHENA.MIT.EDU (Mark.Andrews@NOMINUM.COM)
Sun Nov 12 13:59:40 2000
Message-ID: <200011102233.eAAMXSq45378@drugs.dv.isc.org>
Date: Sat, 11 Nov 2000 09:33:28 +1100
Reply-To: Mark.Andrews@NOMINUM.COM
From: Mark.Andrews@NOMINUM.COM
X-To: "Greg A. Woods" <woods@weird.com>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Your message of "Thu, 09 Nov 2000 16:23:08 CDT."
<20001109212308.AF9214@proven.weird.com>
BIND 8.2.2-P7 is now released and addresses this issue.
http://www.isc.org/products/BIND/bind-security.html
has also been updated to reflect this.
Mark
> [ On Wednesday, November 8, 2000 at 17:29:15 (-0500), Akatosh wrote: ]
> > Subject: Re: BIND 8.2.2-P5 Possible DOS
> >
> > attatched is my half-assed patch
>
> I think this is all that's really necessary. It's working so far for me
> anyway....
>
> Index: src/bin/named/ns_xfr.c
> ===================================================================
> RCS file: /cvs/misc/bind8/src/bin/named/ns_xfr.c,v
> retrieving revision 1.1.1.3
> diff -c -r1.1.1.3 ns_xfr.c
> *** src/bin/named/ns_xfr.c 1999/11/11 06:06:09 1.1.1.3
> --- src/bin/named/ns_xfr.c 2000/11/09 20:49:45
> ***************
> *** 97,103 ****
> "unsupported XFR (type %s) of \"%s\" (%s) to %s",
> p_type(type), zones[zone].z_origin, p_class(class),
> sin_ntoa(qsp->s_from));
> ! goto abort;
> }
>
> #ifdef SO_SNDBUF
> --- 97,104 ----
> "unsupported XFR (type %s) of \"%s\" (%s) to %s",
> p_type(type), zones[zone].z_origin, p_class(class),
> sin_ntoa(qsp->s_from));
> ! (void) shutdown(qsp->s_rfd, 2);
> ! return;
> }
>
> #ifdef SO_SNDBUF
>
> --
> Greg A. Woods
>
> +1 416 218-0098 VE3TCP <gwoods@acm.org> <robohack!woods>
> Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>
--
Mark Andrews, Nominum Inc.
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews@nominum.com
