Date: Wed, 11 Dec 2002 09:55:07 -0600 From: D J Hawkey Jr <hawkeyd@visi.com> To: freebsd-test@freebsd.org, postmaster@freebsd.org Subject: [hawkeyd@visi.com: IPFilter FTP proxy vulnerability?] Message-ID: <20021211095507.A48523@sheol.localdomain>
next in thread | raw e-mail | index | archive | help
----- Forwarded message from D J Hawkey Jr <hawkeyd@visi.com> -----
Date: Thu, 5 Dec 2002 19:54:49 -0600
From: D J Hawkey Jr <hawkeyd@visi.com>
To: security at FreeBSD <freebsd-security@freebsd.org>
Subject: IPFilter FTP proxy vulnerability?
Reply-To: hawkeyd@visi.com
User-Agent: Mutt/1.2.5.1i
For background, please see
ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2002-024.txt.asc
Under FreeBSD-RELEASE-p23, in /usr/src/contrib/ipfilter/HISTORY, the version
is "3.4.20 24/07/2001 - Released".
The CVS repository, tag "All tags / default branch", in the same file, the
version is "3.4.29 28/8/2002 - Released".
Is FreeBSD's IPFilter vulnerable?
As an aside, if any IPFilter versions from 3.4.21 through 3.4.29 were
security updates, would there have been FreeBSD security notices, patches,
and CVS updates on account of them?
Thanks,
Dave
--
______________________ ______________________
\__________________ \ D. J. HAWKEY JR. / __________________/
\________________/\ hawkeyd@visi.com /\________________/
http://www.visi.com/~hawkeyd/
----- End forwarded message -----
Dave
--
______________________ ______________________
\__________________ \ D. J. HAWKEY JR. / __________________/
\________________/\ hawkeyd@visi.com /\________________/
http://www.visi.com/~hawkeyd/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-test" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021211095507.A48523>