[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2015-06-17 Thread Rolf Leggewie
lucid has seen the end of its life and is no longer receiving any updates. Marking the lucid task for this ticket as Won't Fix. ** Changed in: proftpd-dfsg (Ubuntu Lucid) Status: In Progress = Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2012-11-21 Thread Mahyuddin Susanto
** Changed in: proftpd-dfsg (Ubuntu Maverick) Assignee: Mahyuddin Susanto (udienz) = (unassigned) ** Changed in: proftpd-dfsg (Ubuntu Natty) Assignee: Mahyuddin Susanto (udienz) = (unassigned) ** Changed in: proftpd-dfsg (Ubuntu Oneiric) Assignee: Mahyuddin Susanto (udienz) =

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2012-03-15 Thread Aaron Kelley
Has there been any progress on getting this fix out? I'm asking because it *is* a security issue, and there hasn't been any reported progress for almost 3 months. This vulnerability is showing up in a PCI compliance scan for one of my servers running Lucid. -- You received this bug

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2012-03-15 Thread Marc Deslauriers
proftpd-dfsg is supported by the community, so somebody needs to step up and provide debdiffs to fix the issue. If nobody is interested in doing the work, then there is no progress and proftpd-dfsg will likely remain vulnerable. -- You received this bug notification because you are a member of

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2011-12-22 Thread Mahyuddin Susanto
** Changed in: proftpd-dfsg (Ubuntu Maverick) Status: Incomplete = In Progress ** Changed in: proftpd-dfsg (Ubuntu Lucid) Status: Incomplete = In Progress ** Changed in: proftpd-dfsg (Ubuntu Oneiric) Status: Incomplete = In Progress ** Changed in: proftpd-dfsg (Ubuntu

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2011-12-20 Thread Jamie Strandboge
Also, it looks like Oneiric may also be affected. Can you verify? ** Also affects: proftpd-dfsg (Ubuntu Oneiric) Importance: Undecided Status: New ** Also affects: proftpd-dfsg (Ubuntu Precise) Importance: Undecided Status: New ** Changed in: proftpd-dfsg (Ubuntu Precise)

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2011-12-20 Thread Jamie Strandboge
Thanks for the debdiffs! Your changelog entry and patch name references 'CVE-2011-041'. This is an invalid CVE identifier. From what I can tell from the history in the Debian squeeze package, you meant to reference CVE-2011-0411. Can you confirm this? If so, the debdiffs should be updated to not

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2011-12-20 Thread Jamie Strandboge
Unsubscribing ubuntu-security-sponsors. Please resubscribe after submitting updated debdiffs. Thanks again. ** Tags added: patch-needswork -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/905252 Title:

[Bug 905252] Re: CVE-2011-4130 in lucid, maverick, natty

2011-12-17 Thread Mahyuddin Susanto
** Summary changed: - CVE-2011-4130 + CVE-2011-4130 in lucid, maverick, natty -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/905252 Title: CVE-2011-4130 in lucid, maverick, natty To manage