bzfs version 1.7g0 and below are vulnerable to a denial of service attack. An exploit for this has been written and released into the wild by a helpful fellow who goes by the name of "russian code molester."
Current CVS is not vulnerable to this bug, so please upgrade! This denail-of-service crashes bzfs, and may also be related to the rumors of a shell exploit. For help building CVS, please stop by the IRC channel.
[EDIT by fiberchunks] Hope this doesn't irritate captain_proton, but please, please please, upgrade your servers immediately. I have announcified this message[/quote]
EXTREMELY IMPORTANT!! -- SERVER OPERATORS PLEASE READ
- purple_cow
- Private First Class
- Posts: 63
- Joined: Sun Dec 15, 2002 9:24 pm
-
- Registered User
- Posts: 0
- Joined: Fri Oct 28, 2005 11:59 pm
-
- Registered User
- Posts: 0
- Joined: Fri Oct 28, 2005 11:59 pm
Re: EXTREMELY IMPORTANT!! -- SERVER OPERATORS PLEASE READ
[/quote]captain_proton wrote:bzfs version 1.7g0 and below are vulnerable to a denial of service attack. An exploit for this has been written and released into the wild by a helpful fellow who goes by the name of "russian code molester."
Current CVS is not vulnerable to this bug, so please upgrade! This denail-of-service crashes bzfs, and may also be related to the rumors of a shell exploit. For help building CVS, please stop by the IRC channel.
[EDIT by fiberchunks] Hope this doesn't irritate captain_proton, but please, please please, upgrade your servers immediately. I have announcified this message
Ya know that most projects will package a new release over something like this.
- purple_cow
- Private First Class
- Posts: 63
- Joined: Sun Dec 15, 2002 9:24 pm