package: pure-ftpd tags: security severity: grave The new release 1.0.30 fixes a flaw similar to Postfix's CVE-2011-0411 by clearing the command-line buffer after switching to TLS.
Reference: http://tech.groups.yahoo.com/group/postfix-users/message/275069 Regards Racke -- LinuXia Systems => http://www.linuxia.de/ Expert Interchange Consulting and System Administration ICDEVGROUP => http://www.icdevgroup.org/ Interchange Development Team -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
