Opened 19 years ago

Closed 19 years ago

Last modified 8 years ago

#327 closed defect (fixed)

ProFTPD-1.2.8p

Reported by: danielbaumann@… Owned by: blfs-book@…
Priority: high Milestone:
Component: BOOK Version: ~CVS
Severity: normal Keywords:
Cc:

Description

Since nobody seems to read blfs-dev mailing-list, I post here :/

Change History (4)

comment:1 by larry@…, 19 years ago

Resolution: fixed
Status: newclosed

comment:2 by igor@…, 19 years ago

bug_file_loc: http://archives.linuxfromscratch.org/mail-archives/blfs-dev/2003/07/0014.htmlhttp://www.proftpd.org/
Resolution: fixed
Status: closedreopened
Summary: New Package: ProFTPDProFTPD-1.2.8p

Version increment (1.2.8p)

"X-Force Research at ISS has discovered a remote exploit in ProFTPD's handling of ASCII translations that an attacker, by downloading a carefully crafted file, can exploit and gain a root shell.

The source distributions on ftp.proftpd.org have all been replaced with patched versions. All ProFTPD users are strongly urged to upgrade to one of the patched versions as soon as possible."

comment:3 by igor@…, 19 years ago

Resolution: fixed
Status: reopenedclosed

comment:4 by bdubbs@…, 8 years ago

Milestone: old

Milestone old deleted

Note: See TracTickets for help on using tickets.