Looking at fsplib code shipped with gftp and this upstream's patch (http://fsp.cvs.sourceforge.net/fsp/fsplib/fsplib.c?r1=1.15&r2=1.16), it seems that we don't need to do anything.
** Changed in: gftp (Ubuntu) Status: Confirmed => Won't Fix -- [gftp] [CVE-2007-3961] [CVE-2007-3962] possible execution of arbitrary code or DoS https://bugs.launchpad.net/bugs/185040 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs