Jeff, > > http://www.securityfocus.com/archive/1/246331 > > > > There's no exploit - yet. > > It should also be noted that they are not even sure if it is > exploitable. Not all free() bugs are exploitable.
This may be true, but after what happened with wu-ftpd, I for one am rather jumpy about this. Considering that ProFTPD already have a release available that fixes this, can we assume that you (Sun/Cobalt) are looking into putting the new RC into a package as a matter of urgency? Regards, Jonathan Michaelson _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
