skip to main
|
skip to sidebar
Security
Hacking everything, by Chris Evans / scarybeasts
Sunday, October 18, 2009
vsftpd-2.2.1 released
Nothing too exciting, just two regressions fixed: "pasv_address" should work again, and SSL data connections should no longer fail after a long previous transfer or an extended idle period.
0 comments:
Post a Comment
Newer Post
Older Post
Home
Subscribe to:
Post Comments (Atom)
Subscribe To ScarybeastSecurity
Posts
Atom
Posts
Comments
Atom
Comments
Which x86 register has the coolest feature(s)?
Is browser security fundamentally broken?
My other stuff
My security advisories
vsftpd home page
Tavis' security advisories
Blog Archive
►
2012
(2)
►
February
(1)
Chrome Linux 64-bit and Pepper Flash
►
January
(1)
The dirty secret of browser security #1
►
2011
(10)
►
July
(1)
Alert: vsftpd download backdoored
►
May
(2)
libxml vulnerability and interesting integer issue...
Bug bounties vs. black (& grey) markets
►
April
(1)
Fiddling with Chromium's new certificate pinning
►
March
(3)
Multi-browser heap address leak in XSLT
Busy Chrome day...
Dangerous file write bug in Foxit PDF Reader
►
February
(2)
I got accidental code execution via glibc?!
Some less obvious benefits of HSTS
►
January
(1)
A harmless SVG + XSLT curiousity
►
2010
(11)
►
October
(1)
Minor leak, major headache
►
September
(1)
IE8 CSS-based forced tweeting
►
August
(1)
Internet Explorer considered harmful
►
July
(3)
Firefox fixes CSS-based cross-origin theft issue
Fixing responsible disclosure
More money for critical Chromium security bugs!
►
June
(1)
Open redirectors: some sanity
►
March
(1)
vsftpd HTTP lunacy!
►
January
(3)
Encouraging More Chromium Security Research
Posting raw XML cross-domain
"Logout XSRF" - significant web app bug?
▼
2009
(29)
►
December
(3)
Generic cross-browser cross-domain theft
Bypassing the intent of blocking "third-party" coo...
Cross-domain search timing
►
November
(2)
vsftpd-2.2.2 released
A new fuzz frontier: packet boundaries
▼
October
(3)
Chromium and Linux sandboxing
vsftpd-2.2.1 released
HITB Malaysia 2009 and sandboxing
►
September
(1)
Patching ffmpeg into shape
►
August
(2)
vsftpd-2.2.0 released
Apple ColorSync heap overflow
►
July
(3)
Beware the little pieces you use in your web app
iPhone and Safari advisories
vsftpd-2.2.0pre1 and network separation
►
June
(4)
Clusterfuzzing
Bonus Safari XXE (only affecting Safari 4 Beta)
Apple's Safari 4 also fixes cross-domain XML theft...
Apple's Safari 4 fixes local file theft attack
►
May
(3)
vsftpd-2.1.2 released and new security tricks
A more plausible E4X attack
HiTB Dubai: all over apart from the blogging
►
March
(3)
Sun Java JRE Pack200 bugs
LittleCMS exploit
LittleCMS vulnerabilities
►
February
(4)
Linux kernel minor "seccomp" vulnerability
Linux kernel minor signal vulnerability
vsftpd-2.1.0 and ptrace() sandboxing
►
January
(1)
►
2008
(20)
►
December
(2)
►
November
(5)
►
October
(1)
►
August
(3)
►
July
(5)
►
March
(1)
►
February
(3)
About Me
Chris
View my complete profile
Posts
0 comments:
Post a Comment