Hi there, On Wed, 17 Feb 2016, Dominique Jullier wrote:
Are they any thoughts around, how to handle yesterday's glibc vulnerability[1][2] from the side bind?
This is a glibc issue, not a bind issue. It makes no sense to attempt to fix the problem by modifying bind. Firstly, bind is not the only software which may call glibc's getaddrinfo() function in a way which could permit exploitation, and secondly, a 'sticking plaster' fix is likely to come unstuck anyway.
Since it is a rather painful task in order to update all hosts ...
I fear that there's no alternative. -- 73, Ged. _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
