From owner-freebsd-security Wed Apr 4 17:16:32 2001 Delivered-To: freebsd-security@freebsd.org Received: from mailhub.airlinksys.com (mailhub.airlinksys.com [216.70.12.6]) by hub.freebsd.org (Postfix) with ESMTP id EB40F37B43E for ; Wed, 4 Apr 2001 17:16:27 -0700 (PDT) (envelope-from sjohn@airlinksys.com) Received: from ns2.airlinksys.com (ns2.airlinksys.com [216.70.12.3]) by mailhub.airlinksys.com (Postfix) with ESMTP id 417B353501 for ; Wed, 4 Apr 2001 19:16:27 -0500 (CDT) Received: by ns2.airlinksys.com (Postfix, from userid 1000) id 733BC5DA8; Wed, 4 Apr 2001 19:16:26 -0500 (CDT) Date: Wed, 4 Apr 2001 19:16:26 -0500 From: Scott Johnson To: freebsd-security@FreeBSD.ORG Subject: Re: Fwd: ntpd =< 4.0.99k remote buffer overflow Message-ID: <20010404191626.A6071@ns2.airlinksys.com> Reply-To: Scott Johnson Mail-Followup-To: freebsd-security@FreeBSD.ORG References: <3ACBB263.2804E9C2@ursine.com> <52565.986428557@critter> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <52565.986428557@critter>; from phk@critter.freebsd.dk on Thu, Apr 05, 2001 at 01:55:57AM +0200 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Quoth Poul-Henning Kamp on Thu, Apr 05, 2001 at 01:55:57AM +0200: > > This has already been fixed in FreeBSD current & stable an hour > ago or so. > > Poul-Henning Is a patch coming for 4.2-RELEASE? Will we just have to install the port over our system binaries, like we did with bind? In that case, it appears that just setting PREFIX=/usr won't do to overwrite the system version, since the port puts its binaries in ${PREFIX}/bin. -- Scott Johnson System/Network Administrator Airlink Systems To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message