lucid has seen the end of its life and is no longer receiving any
updates. Marking the lucid task for this ticket as Won't Fix.
** Changed in: proftpd-dfsg (Ubuntu Lucid)
Status: In Progress = Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which
** Changed in: proftpd-dfsg (Ubuntu Maverick)
Assignee: Mahyuddin Susanto (udienz) = (unassigned)
** Changed in: proftpd-dfsg (Ubuntu Natty)
Assignee: Mahyuddin Susanto (udienz) = (unassigned)
** Changed in: proftpd-dfsg (Ubuntu Oneiric)
Assignee: Mahyuddin Susanto (udienz) =
Has there been any progress on getting this fix out? I'm asking because
it *is* a security issue, and there hasn't been any reported progress
for almost 3 months. This vulnerability is showing up in a PCI
compliance scan for one of my servers running Lucid.
--
You received this bug
proftpd-dfsg is supported by the community, so somebody needs to step up
and provide debdiffs to fix the issue.
If nobody is interested in doing the work, then there is no progress and
proftpd-dfsg will likely remain vulnerable.
--
You received this bug notification because you are a member of
** Changed in: proftpd-dfsg (Ubuntu Maverick)
Status: Incomplete = In Progress
** Changed in: proftpd-dfsg (Ubuntu Lucid)
Status: Incomplete = In Progress
** Changed in: proftpd-dfsg (Ubuntu Oneiric)
Status: Incomplete = In Progress
** Changed in: proftpd-dfsg (Ubuntu
Also, it looks like Oneiric may also be affected. Can you verify?
** Also affects: proftpd-dfsg (Ubuntu Oneiric)
Importance: Undecided
Status: New
** Also affects: proftpd-dfsg (Ubuntu Precise)
Importance: Undecided
Status: New
** Changed in: proftpd-dfsg (Ubuntu Precise)
Thanks for the debdiffs! Your changelog entry and patch name references
'CVE-2011-041'. This is an invalid CVE identifier. From what I can tell
from the history in the Debian squeeze package, you meant to reference
CVE-2011-0411. Can you confirm this? If so, the debdiffs should be
updated to not
Unsubscribing ubuntu-security-sponsors. Please resubscribe after
submitting updated debdiffs. Thanks again.
** Tags added: patch-needswork
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/905252
Title:
** Summary changed:
- CVE-2011-4130
+ CVE-2011-4130 in lucid, maverick, natty
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/905252
Title:
CVE-2011-4130 in lucid, maverick, natty
To manage