oss-sec mailing list archives
vsftpd CVE-2007-5962 (Red Hat / Fedora specific)
From: Tomas Hoger <thoger () redhat com>
Date: Wed, 21 May 2008 17:02:58 +0200
Hi Chris! This is just a heads-up. We are releasing updated vsftpd packages containing a fix for a minor memory leak identified by CVE-2007-5962. The issue occurred because of the Red Hat / Fedora specific patch which, according to information from our vsftpd maintainer, is not in upstream. I also checked few major vendors, it seems no one is using the patch. More details in our BZ: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2007-5962 -- Tomas Hoger / Red Hat Security Response Team
Current thread:
- vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Tomas Hoger (May 21)
- Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Jonathan Smith (May 21)
- Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Josh Bressers (May 21)
- Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Steven M. Christey (May 21)
- Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Jonathan Smith (May 21)
- Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Josh Bressers (May 21)
- Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific) Jonathan Smith (May 21)