Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Wed, 21 May 2008 17:02:58 +0200
From: Tomas Hoger <thoger@...hat.com>
To: chris@...ry.beasts.org
Cc: oss-security@...ts.openwall.com
Subject: vsftpd CVE-2007-5962 (Red Hat / Fedora specific)

Hi Chris!

This is just a heads-up.  We are releasing updated vsftpd packages
containing a fix for a minor memory leak identified by CVE-2007-5962.

The issue occurred because of the Red Hat / Fedora specific patch
which, according to information from our vsftpd maintainer, is not in
upstream.  I also checked few major vendors, it seems no one is using
the patch.

More details in our BZ:

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2007-5962

-- 
Tomas Hoger / Red Hat Security Response Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.