Re: [da@securityfocus.com: ISS Security Brief: ProFTPD ASCII File Remote Compromise Vulnerability (fwd)]

• Previous message: Haesu: "Re: [da@securityfocus.com: ISS Security Brief: ProFTPD ASCII File Remote Compromise Vulnerability (fwd)]"
• In reply to: Haesu: "Re: [da@securityfocus.com: ISS Security Brief: ProFTPD ASCII File Remote Compromise Vulnerability (fwd)]"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 24 Sep 2003 10:28:40 +0300
To: Haesu <haesu@towardex.com>

On Wed, Sep 24, 2003 at 02:20:14AM -0400, Haesu wrote:
> I just want to clarify...
>
> # $FreeBSD: ports/ftp/proftpd/Makefile,v 1.56 2003/09/23 18:42:43 mharo Exp $
> #
>
> PORTNAME= proftpd
> PORTVERSION= 1.2.8
> PORTREVISION= 1
>
> Is that the updated port that fixes vulnerability? It's 1.2.8 still, but I think
> this is the patched version, since rcsID shows 9/23 which is yesterday.

Yes, this is the fixed version. Although the port version is still at
1.2.8, the port revision was bumped to 1 yesterday (it was not defined
previously, which would be equivalent to a revision of 0), so that the
FreeBSD port version is now actually 1.2.8_1.

G'luck,
Peter

-- 
Peter Pentchev	roam@ringlet.net    roam@sbnd.net    roam@FreeBSD.org
PGP key:	http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint	FDBA FD79 C26F 3C51 C95E  DF9E ED18 B68D 1619 4553
You have, of course, just begun reading the sentence that you have just finished reading.

• application/pgp-signature attachment: stored

• Previous message: Haesu: "Re: [da@securityfocus.com: ISS Security Brief: ProFTPD ASCII File Remote Compromise Vulnerability (fwd)]"
• In reply to: Haesu: "Re: [da@securityfocus.com: ISS Security Brief: ProFTPD ASCII File Remote Compromise Vulnerability (fwd)]"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]