From owner-freebsd-security  Tue Apr 10  7:51:46 2001
Delivered-To: freebsd-security@freebsd.org
Received: from mail.wlcg.com (mail.wlcg.com [207.226.17.4])
	by hub.freebsd.org (Postfix) with ESMTP id 0B96737B423
	for <freebsd-security@freebsd.org>; Tue, 10 Apr 2001 07:51:43 -0700 (PDT)
	(envelope-from rsimmons@wlcg.com)
Received: from localhost (rsimmons@localhost)
	by mail.wlcg.com (8.11.3/8.11.3) with ESMTP id f3AEpnD94714
	for <freebsd-security@freebsd.org>; Tue, 10 Apr 2001 10:51:49 -0400 (EDT)
	(envelope-from rsimmons@wlcg.com)
Date: Tue, 10 Apr 2001 10:51:45 -0400 (EDT)
From: Rob Simmons <rsimmons@wlcg.com>
To: <freebsd-security@freebsd.org>
Subject: ftp vulnerability
Message-ID: <Pine.BSF.4.33.0104101047440.94341-100000@mail.wlcg.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

What was the corrected date for this problem?  I checked the freebsd
advisories, and didn't see an one about this yet.

- -----------
CERT Advisory CA-2001-07 File Globbing Vulnerabilities in Various FTP
Servers

   Original release date: April 10, 2001
   Last revised: --
   Source: CERT/CC

<snip>

FreeBSD, Inc.

   FreeBSD is vulnerable to the glob-related bugs. We have corrected
   these bugs in FreeBSD 5.0-CURRENT and FreeBSD 4.2-STABLE, and they
   will not be present in FreeBSD 4.3-RELEASE.
- -----------


Robert Simmons
Systems Administrator
http://www.wlcg.com/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE60x4Fv8Bofna59hYRAzmaAJoDbJZY5wskbDrCaPrKctmRJfV+HQCeMCa4
jcBq1Wb56/Ihf/OTcLUibkw=
=hJS3
-----END PGP SIGNATURE-----



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message