Stephan A. Rickauer wrote: > CVE-2007-0493: If recursion is enabled, a remote attacker can > dereference a freed fetch context causing the daemon to abort / crash. > > CVE-2007-0494: By sending specific DNS query responses with multiple > RRSETS attackers could cause BIND to exit abnormally. > > > Is this of relevance also for OpenBSD's bind? I guess not, but maybe > some insider could shed some photons on it.
This was fixed on 2007-01-25: http://marc.theaimsgroup.com/?l=openbsd-cvs&m=116970956517411&w=2
