Does the 0.11.0-pre have the security fixes?
Alexander Barton wrote:
Hello All!
ngIRCd 0.10.4 has been released, fixing a security bug which could cause the server to access invalid memory and to crash while handling specially crafted PART commands. All installations should be upgraded!
ftp://ftp.berlios.de/pub/ngircd/ngircd-0.10.4.tar.gz ftp://ngircd.barton.de/pub/ngircd/ngircd-0.10.4.tar.gz
The GnuPG signature and a patch from 0.10.3 is available and can be downloaded from here:
ftp://ngircd.barton.de/pub/ngircd/ ftp://ngircd.berlios.de/pub/ngircd/
All the above and more information, bug tracker, and CVS web frontend can be found via the homepage of ngIRCd which is located here:
http://ngircd.barton.de/ http://ngircd.berlios.de/
This release is tagged as "rel-0-10-4" in CVS.
The fix for the above mentioned security bug is the only change since release 0.10.3.
In addition, ngIRCd 0.11.0-pre2 has been released which fixes this bug as well. It can be obtained via the usual FTP servers listed above.
Regards Alex
ngIRCd-ML mailing list ngIRCd-ML@Arthur.Ath.CX http://arthur.ath.cx/mailman/listinfo/ngircd-ml