Release Notes: This release adds aecurity fix to avoid resource exhaustion when globbing paths.
Release Notes: A security problem when globbing paths was fixed.
Release Notes: Security fixes were made for the internal ls and for VU #590371. Tru64 Security Integration Architecture (SIA) authentication is supported. The shadow password expiry check was fixed for users with large sp_max values. Portability improvements were made.
Release Notes: Portability improvements.
Release Notes: This release will not split large commands into multiple commands; it will just fail on them. This prevents cross-site request forgery (CSRF)-like attacks, when a Web browser is used to access an FTP server. The option -C has been enhanced to support an optional @host ('-C user[@host]'): thsi checks whether the specified user connecting from the specified host would be granted access by ftpusers(5). IPv6 is supported in the host directive of ftpusers(5).