From owner-freebsd-questions  Thu May 22 02:19:17 1997
Return-Path: <owner-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id CAA11834
          for questions-outgoing; Thu, 22 May 1997 02:19:17 -0700 (PDT)
Received: from shell.futuresouth.com (shell.futuresouth.com [207.141.254.20])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id CAA11829
          for <questions@freebsd.org>; Thu, 22 May 1997 02:19:14 -0700 (PDT)
Received: (from tim@localhost)
	by shell.futuresouth.com (8.8.5/8.8.5) id EAA13509;
	Thu, 22 May 1997 04:19:13 -0500 (CDT)
Message-ID: <19970522041913.25859@shell.futuresouth.com>
Date: Thu, 22 May 1997 04:19:13 -0500
From: Tim Tsai <tim@futuresouth.com>
To: questions@freebsd.org
Subject: CERT advisory on metamail
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.69
Sender: owner-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Has anybody read the CERT advisory on metamail?  It says that FreeBSD port
version later than May 30, 1997 does not have this vulnerability, which
is really silly if you think about it!  I looked at the one in
ports-current and it contains the holes.  Any idea on what's going on
here?

Tim