This issue was fixed in Citadel 6.29, which can be obtained from http://uncensored.citadel.org/citadel/ Previous versions of Citadel are only vulnerable when running on BSD, or Linux with a non-default number of max open files, as discussed in the article. No exploits against Citadel using this vulnerability are known at this time, but all users, especially those on BSD systems, should upgrade at the earliest opportunity. On Mon, 24 Jan 2005 23:30:08 +0300, 3APA3A <3APA3A@xxxxxxxxxxxxxxxx> wrote: > > Issue: Multiple applications fd_set structure bitmap array > index overflow > Type: remote > Date: December, 12 2004 > Original URL: http://www.security.nnov.ru/advisiories/sockets.asp > Author: 3APA3A > URL: http://www.security.nnov.ru/ > citadel 6.27 (untested) > Citadel is flexible, powerful, community-oriented groupware > http://uncensored.citadel.org/citadel/
