FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  362910
Date:      2014-07-25
Time:      14:12:54Z
Committer: ohauer

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
53a0ddef-0208-11e2-8afa-0024e830109bdns/bind9* -- Several vulnerabilities

ISC reports:

Prevents a crash when queried for a record whose RDATA exceeds 65535 bytes.

Prevents a crash when validating caused by using "Bad cache" data before it has been initialized.

ISC_QUEUE handling for recursive clients was updated to address a race condition that could cause a memory leak. This rarely occurred with UDP clients, but could be a significant problem for a server handling a steady rate of TCP queries.

A condition has been corrected where improper handling of zero-length RDATA could cause undesirable behavior, including termination of the named process.


Discovery 2012-09-12
Entry 2012-09-18
bind99
lt 9.9.1.3

bind98
lt 9.8.3.3

bind97
lt 9.7.6.3

bind96
lt 9.6.3.1.ESV.R7.3


57a700f9-12c0-11e2-9f86-001d923933b6dns/bind9* -- crash on deliberately constructed combination of records

ISC reports:

A deliberately constructed combination of records could cause named to hang while populating the additional section of a response.


Discovery 2012-09-26
Entry 2012-10-10
bind99
lt 9.9.1.4

bind98
lt 9.8.3.4

bind97
lt 9.7.6.4

bind96
lt 9.6.3.1.ESV.R7.4

CVE-2012-5166
57a700f9-12c0-11e2-9f86-001d923933b6dns/bind9* -- crash on deliberately constructed combination of records

ISC reports:

A deliberately constructed combination of records could cause named to hang while populating the additional section of a response.


Discovery 2012-09-26
Entry 2012-10-10
bind99
lt 9.9.1.4

bind98
lt 9.8.3.4

bind97
lt 9.7.6.4

bind96
lt 9.6.3.1.ESV.R7.4

CVE-2012-5166