On Tue, Dec 13, 2011 at 18:01, Moritz Muehlenhoff <j...@inutil.org> wrote: > On Tue, Jan 05, 2010 at 09:04:30AM -0430, Muammar El Khatib wrote: >> Hi Michael, >> >> On Tue, Nov 24, 2009 at 1:03 AM, Michael Gilbert >> <michael.s.gilb...@gmail.com> wrote: >> > Package: amsn >> > Version: 0.98.1-1 >> > Severity: important >> > Tags: security >> > >> > Hi, >> > >> > The following CVE (Common Vulnerabilities & Exposures) ids were >> > published quite a while ago for amsn. Please check whether these >> > issues still exist. If so, you may want to issue proposed-updates for >> > the stable releases. >> > >> > CVE-2006-0138[0]: >> > | aMSN (aka Alvaro's Messenger) allows remote attackers to cause a >> > | denial of service (client hang and termination of client's >> > | instant-messaging session) by repeatedly sending crafted data to the >> > | default file-transfer port (TCP 6891). >> > >> >> I have confirmed this one. And a screenshot can be found attached to this >> mail. > > What's the status? >
Upstream seems to not care about it. > Has this been fixed in the last approx. two years? > No, it has not... I am not sure I'd be able to fix this by myself, btw. -- Muammar El Khatib. Linux user: 403107. GPG Key = 127029F1 http://muammar.me | http://proyectociencia.org ,''`. : :' : `. `' `- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
