Bug 36479 - gftp<2.0.8 has format string errors
gftp<2.0.8 has format string errors
Product: Red Hat Raw Hide
Classification: Retired
Component: gftp (Show other bugs)
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Havoc Pennington
Aaron Brown
: Security
Depends On:
  Show dependency treegraph
Reported: 2001-04-18 09:46 EDT by Jarno Huuskonen
Modified: 2007-04-18 12:32 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2001-04-18 14:19:42 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2001:053 normal SHIPPED_LIVE : gftp format string vulnerability corrected 2001-04-20 00:00:00 EDT

  None (edit)
Description Jarno Huuskonen 2001-04-18 09:46:36 EDT
gftp has format string errors in server response code.
"Changes from 2.0.7b to 2.0.8pre1
Fixed format string security problem in logging of ftp and http responses"

Server can crash/run code in gftp-client. This same problem is in
earlier Red Hat gftp releases.
Comment 1 Havoc Pennington 2001-04-18 14:19:38 EDT
I mailed the upstream author to ask if we should use the beta or backport the
fix to the stable version.

Note You need to log in before you can comment on or make changes to this bug.