Hi, I've noticed lftp is using code borrowed from curl. That makes lftp affected by CVE-2014-0139: http://curl.haxx.se/docs/adv_20140326B.html
It's not the most critical vulnerability, but anyway, I'll suggest to update to code from latest curl for the next release. -- Vita Cizek
signature.asc
Description: Digital signature
_______________________________________________ lftp mailing list lftp@uniyar.ac.ru http://univ.uniyar.ac.ru/mailman/listinfo/lftp
