On Mon, 22 Oct 2007, Indunil Jayasooriya wrote:

Indunil,

The correct solution to deal with this security issue is to update to the
latest bind of CentOS 4, which already provided a backported fix for this
problem in CentOS 4.

By rebuilding a package of CentOS 5 and running it on CentOS 4, you will
no longer receive automatically any new security fixes from CentOS 4.
Because you have manually upgraded your CentOS 4 bind to a newer version
than Red Hat supports.

As a consequence of your actions, you will have to rebuild *every* bind
release from CentOS 5 on your CentOS 4 box yourself. For no real good
reason.