On Thursday 22 March 2007 23:32, RW wrote:
> It started up manually and ran as it has for the past (nearly) year,
> so it looks like a one-off but I'd love to hear of possible causes.
>
> Thanks,
> Rod/
from: src/usr.sbin/bind/lib/isc/mem.c
/*
* Perform a free, doing memory filling and overrun detection as
necessary.
*/
static inline void
mem_put(isc_mem_t *ctx, void *mem, size_t size) {
#if ISC_MEM_CHECKOVERRUN
INSIST(((unsigned char *)mem)[size] == 0xbe);
#endif
#if ISC_MEM_FILL
memset(mem, 0xde, size); /* Mnemonic for "dead". */
#else
UNUSED(size);
#endif
(ctx->memfree)(ctx->arg, mem);
}
The error you hit was in a free function, line 628. Listed in the CVE is
a "Use-after-free vulnerability" (CVE-2007-0493) which may or may not
be related (OpenBSD is not listed as vulnerable).
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=bind
jcr
