Date: Wed, 11 Dec 2002 09:55:07 -0600 From: D J Hawkey Jr <hawkeyd@visi.com> To: freebsd-test@freebsd.org, postmaster@freebsd.org Subject: [hawkeyd@visi.com: IPFilter FTP proxy vulnerability?] Message-ID: <20021211095507.A48523@sheol.localdomain>
next in thread | raw e-mail | index | archive | help
----- Forwarded message from D J Hawkey Jr <hawkeyd@visi.com> ----- Date: Thu, 5 Dec 2002 19:54:49 -0600 From: D J Hawkey Jr <hawkeyd@visi.com> To: security at FreeBSD <freebsd-security@freebsd.org> Subject: IPFilter FTP proxy vulnerability? Reply-To: hawkeyd@visi.com User-Agent: Mutt/1.2.5.1i For background, please see ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2002-024.txt.asc Under FreeBSD-RELEASE-p23, in /usr/src/contrib/ipfilter/HISTORY, the version is "3.4.20 24/07/2001 - Released". The CVS repository, tag "All tags / default branch", in the same file, the version is "3.4.29 28/8/2002 - Released". Is FreeBSD's IPFilter vulnerable? As an aside, if any IPFilter versions from 3.4.21 through 3.4.29 were security updates, would there have been FreeBSD security notices, patches, and CVS updates on account of them? Thanks, Dave -- ______________________ ______________________ \__________________ \ D. J. HAWKEY JR. / __________________/ \________________/\ hawkeyd@visi.com /\________________/ http://www.visi.com/~hawkeyd/ ----- End forwarded message ----- Dave -- ______________________ ______________________ \__________________ \ D. J. HAWKEY JR. / __________________/ \________________/\ hawkeyd@visi.com /\________________/ http://www.visi.com/~hawkeyd/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-test" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021211095507.A48523>