Ubuntu used a patch for this, but it's just a work-around for now and multiple upstream's developers told me that is not the right approach to use. -- debbug#555134 ...
One bug found | Edit Search | Change Columns |
as
ID Status Resolution Sev Product Comp Assignee Reporter Summary
25753 CLOS FIXE cri Sisyphus tftpd sbolshakov ldv CVE-2011-2199: buffer overflow in tftp-hpa

File a new bug in the "tftpd" component of the "Sisyphus" product