BSD ftpd Single Byte Buffer Overflow Vulnerability
OpenBSD has released a patch for this vulnerability. NetBSD has released patches for versions 1.4.3 and 1.5. It is recommended that users with NetBSD 1.4.2 or earlier upgrade and then apply one of the patches.
Progeny has released patched upgrades for the vulnerable ftp server packages in their distribution of Debian Linux.
David A. Holland linux-ftpd 0.17
David Madore ftpd-BSD 0.2.3
BSD ftpd 0.3.2
NetBSD NetBSD 1.5
OpenBSD OpenBSD 2.8