the lftp and lftp-ssl packages need to be upgraded to 2.6.10 to fix a serious security hole.
from SSA:2003-346-01 available at http://www.slackware.com/security/viewer.php?l=slackware-security&y=2003&m=slackware-security.364571
===
Upgraded to lftp-2.6.10.
According to the NEWS file, this includes "security fixes in html
parsing code" which could cause a compromise when using lftp to
access an untrusted site.
===
fwiw, marc
ps: is there a working bug-tracking system for fink that people use? the search at http://bugs.finkproject.org/ isn't working for me.
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
