Date: Tue, 10 Apr 2001 22:06:08 +0900 From: fbsd <fbsd@typhoon.co.jp> To: freebsd-questions@FreeBSD.ORG Subject: Re: CERT Advisory CA-2001-07 (fwd) Message-ID: <3AD30540.C776D890@typhoon.co.jp> References: <Pine.BSF.4.21.0104100740200.2171-100000@joule.excelsus.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Weldon S Godfrey 3 wrote: > The File Globbing Vulnerability mentioned in CERT Advisory CA-2001-07 is > fixed in 4.2-STABLE and 5.0-CURRENT and will be fixed on 4.3-RELEASE. > > My question is, can the ftpd binary be used from 4.2-STABLE for > 4.2-RELEASE (or any 4.x-RELEASE) to fix this problem or is it that the > binary cannot work under these versions or is the fix beyond the binary > (it involves shared libraries, etc.)? I certainly hope there will be a patch (from FreeBSD.org) for 3.5.X AND 4.X too! > > > Thanks, > > Weldon > > --SNIP from CERT CA-2001-07 -- > > FreeBSD is vulnerable to the glob-related bugs. We have corrected > these bugs in FreeBSD 5.0-CURRENT and FreeBSD 4.2-STABLE, and they > will not be present in FreeBSD 4.3-RELEASE. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3AD30540.C776D890>