Date: Fri, 31 May 2002 09:40:02 -0700 (PDT) From: Makoto Matsushita <matusita@jp.FreeBSD.org> To: freebsd-bugs@FreeBSD.org Subject: Re: bin/38765: CVS Daemon Vulnerability in 1.11.1p1 Message-ID: <200205311640.g4VGe2l48230@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR bin/38765; it has been noted by GNATS. From: Makoto Matsushita <matusita@jp.FreeBSD.org> To: sysadmin@alexdupre.com Cc: bug-followup@FreeBSD.org Subject: Re: bin/38765: CVS Daemon Vulnerability in 1.11.1p1 Date: Sat, 01 Jun 2002 01:30:51 +0900 sysadmin> Nope, you are right. I thought it was fixed in 1.11.2, as sysadmin> reported by securityfocus sysadmin> (http://online.securityfocus.com/bid/4829/solution/). Ya, this report says other points, my assumption is not correct. <URL:http://online.securityfocus.com/archive/1/274281> shows the correct information. This problem is fixed in src/rcs.c rev 1.252, which is between cvs-1.11.1 and cvs-1.11.2; FreeBSD's cvs has this bug. -- - Makoto `MAR' Matsushita To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200205311640.g4VGe2l48230>