On Thu, 31 Jul 2008, Connie Sieh wrote:
<snip>
>> I am running a SL system that has bind-9.2.5-3 and this seems to be the
>> latest that yum will take it to for my version. Is there a patch or
>> further
>> update that I can implement to overcome the cache poisoning vulnerability
>> that was recently patched in later bind releases?
>
> The bind errata when out July 10, 2008.
>
> Yum should be able to get it for you.
For sl4 the bind versions seem to all be -9.2.4- so it isn't clear if that
bind-9.2.5-3 is a typing error (the release number looks awfully low too),
or if he has installed a version of bind from some 3rd party place.
Coincidentally (I hope) bind-9.2.5-3 was the last bind rpm released for
Fedora-Core 3 (back in 2005)...
--
Jon Peatfield, Computer Officer, DAMTP, University of Cambridge
Mail: [log in to unmask] Web: http://www.damtp.cam.ac.uk/