Full Disclosure mailing list archives

Re: [SECURITY] [DSA 447-1] New hsftp packages fix format string vulnerability

From: Ulf Härnhammar <Ulf.Harnhammar.9485 () student uu se>
Date: Mon, 23 Feb 2004 22:28:46 +0100

If you use hsftp on some other system than Debian, you'll be interested in the
fact that this has been corrected in upstream's recently released version 1.14.

Another way to correct this is to apply my attached patch (diff'ed against
version 1.13).

-- 
Ulf Härnhammar
 student, Uppsala universitet
 redaktör, idiosynkratisk ( http://labben.abm.uu.se/~ulha9485/idiosynkratisk/ )

Attachment: hsftp.patch
Description:

Current thread:

[SECURITY] [DSA 447-1] New hsftp packages fix format string vulnerability debian-security-announce (Feb 22)
- <Possible follow-ups>
- Re: [SECURITY] [DSA 447-1] New hsftp packages fix format string vulnerability Ulf Härnhammar (Feb 23)