Date: Tue, 17 Apr 2001 12:22:29 -0700 From: Kris Kennaway <kris@obsecurity.org> To: Tony Wells <awells@journalstar.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: CA-2001-07 patch? Message-ID: <20010417122229.A11224@xor.obsecurity.org> In-Reply-To: <3AD607CC.CC1913BE@journalstar.com>; from awells@journalstar.com on Thu, Apr 12, 2001 at 02:53:48PM -0500 References: <3AD607CC.CC1913BE@journalstar.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--opJtzjQTFsWo+cga Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Thu, Apr 12, 2001 at 02:53:48PM -0500, Tony Wells wrote: > I was wondering if a patch had been released yet for the ftpd file > glob'ing exploit. I searched the archives, and looked at the security > advisories, but haven't found anything. The advisory went out just now. There was a minor remaining problem allowing users with an account to DoS the server which prevented us from sending it out yesterday; the rest of the patches were in place some time ago. Kris --opJtzjQTFsWo+cga Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE63Jf1Wry0BWjoQKURAu4gAKCHVC6BTKXp4YXj+Z5agW/OWonh+ACfcUNY aU56gM2T44FvsliOuqwRfm8= =Wzs4 -----END PGP SIGNATURE----- --opJtzjQTFsWo+cga-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010417122229.A11224>