Subject: Re: security/11459: possible fix for remote DoS attack in BIND-8.2.2-P5
To: Greg A. Woods <>
From: None <>
List: netbsd-bugs
Date: 11/10/2000 15:49:52
>Yes, the change given in RedHat's bugzilla to the value given to
>STREAM_AXFRIXFR (in ns_defs.h) may be correct, at least assuming that
>STREAM_AXFRIXFR isn't intended as a multi-purpose value specifying two
>flags simultaneously (which would, IMHO, be bad programming anyway).
>However either the patch I originally attached, or perhaps this more
>generic and possibly more correct patch, is still absolutely necessary:

	i'm looking at 822P7.  822P7 changes STREAM_AXFRIXFR only.  there's no
	code change in ns_xfr.c.