wzdftpd 0.8.3

Another new maintenance release of wzdftpd is now available. This release fixes a denial of service bug on the USER command (CVE-2007-5300). PASV ports are better selected from the PASV port range. There is a whole bunch of OpenSSL memory leak fixes. Corrections have been made to TLS encryption (GnuTLS/OpenSSL compatibility). Other minor bug fixes have been included as well.

Binaries/packages for Debian and Windows will be available for download shortly. Gentoo users can use the supplied 0.8.3 ebuild (contained within the source package).