Hi ! proftpd in Sarge is vulnerable to a format string vulnerability. The corresponding bug is marked as fixed in 1.2.10-20 and found in 1.2.10-15 (which is the Sarge version). This means that the Sarge version is still vulnerable. However, the bug is closed and not tagged security.
Should this bug be reopened and tagged security ? What does "found" mean ? Will a new upload by handled by security team shortly ? -- THE BOYS ROOM IS NOT A WATER PARK THE BOYS ROOM IS NOT A WATER PARK THE BOYS ROOM IS NOT A WATER PARK -+- Bart Simpson on chalkboard in episode 3F03 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
