[Bug 219938] CVE-2006-6563: proftpd < 1.3.1rc1 mod_ctrls buffer overflow
bugzilla at redhat.com
bugzilla at redhat.com
Mon Dec 18 16:47:29 UTC 2006
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: CVE-2006-6563: proftpd < 1.3.1rc1 mod_ctrls buffer overflow
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=219938
matthias at rpmforge.net changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
------- Additional Comments From matthias at rpmforge.net 2006-12-18 11:47 EST -------
It seems like the 1.3.0 + patches from devel, FC-6 and FC-5 might not be
affected. Still, I'd like to try this release candidate and eventually deploy
it, but it fails to build on FC-6 with errors very early in the buils... *sigh*
I'll have a look at it when I have time, and make it high priority if anyone
confirms that the current builds are vulnerable.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the security
mailing list