ELBA-2021-17116
- ULN >
- Oracle Linux Errata repository >
- ELBA-2021-17116
ELBA-2021-17116 - proftpd Bug Fix update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2021-09-17 |
Description
[1.3.5e-11]
- Fix memory disclosure to RADIUS servers by mod_radius (#2001690)
https://github.com/proftpd/proftpd/issues/1284
https://github.com/proftpd/proftpd/pull/1285
[1.3.5e-10]
- Fix null pointer dereference for invalid SCP command by passing the
correct argument count to getopt(3)
https://github.com/proftpd/proftpd/issues/1043
https://github.com/proftpd/proftpd/pull/1044
https://bugzilla.redhat.com/show_bug.cgi?id=1878869
[1.3.5e-9]
- Fix use-after-free vulnerability in memory pools during data transfer
(CVE-2020-9273, https://github.com/proftpd/proftpd/issues/903)
- mod_sftp: When handling the 'keyboard-interactive' authentication mechanism,
as used for (e.g.) PAM, make sure to properly handle DEBUG, IGNORE,
DISCONNECT, and UNIMPLEMENTED messages, per RFC 4253
http://bugs.proftpd.org/show_bug.cgi?id=4385
[1.3.5e-8]
- Fix handling of CRL lookups by properly using issuer for lookups, and
guarding against null pointers (GH#858, GH#859, GH#860, GH#861,
CVE-2019-19269, CVE-2019-19270, CVE-2019-19271, CVE-2019-19272)
[1.3.5e-7]
- Fix build compatibility with MySQL 8 (#1764401)
https://github.com/proftpd/proftpd/issues/824
https://github.com/proftpd/proftpd/pull/825
[1.3.5e-6]
- Fixed pre-authentication remote denial-of-service issue
(CVE-2019-18217, https://github.com/proftpd/proftpd/issues/846)
[1.3.5e-5]
- An arbitrary file copy vulnerability in mod_copy in ProFTPD allowed for
remote code execution and information disclosure without authentication
(CVE-2019-12815)
http://bugs.proftpd.org/show_bug.cgi?id=4372
https://github.com/proftpd/proftpd/pull/816
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (aarch64) | proftpd-1.3.5e-11.el7.src.rpm | f429b5b54e28ec73d0efb70735922cf4607437656cffa2b1d947a7235d377639 | ELBA-2022-19876 | ol7_aarch64_developer_EPEL |
| proftpd-1.3.5e-11.el7.aarch64.rpm | 4ec6c48e61773fe396c5a6f3fdc05dad35fb17a7b5dee4ff48b8c5ae3ecf73d8 | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| proftpd-devel-1.3.5e-11.el7.aarch64.rpm | ca0b5c1e7464349b8b60749f713897d2c28fb9c42462a670f6473e71ca687f07 | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| proftpd-ldap-1.3.5e-11.el7.aarch64.rpm | 2dc4631a82d9955ad6232e82974eaabb1b08b20804a25d42d6f8fc68face638a | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| proftpd-mysql-1.3.5e-11.el7.aarch64.rpm | e5bfc767e6036b3cc592ce1ffe63b6bcf4cc196e71f69608c74ad34227a4212d | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| proftpd-postgresql-1.3.5e-11.el7.aarch64.rpm | 70c02374a3c08e34b70e34bf6970e51203cb61d248962ab4943c0d5aabaabf6e | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| proftpd-sqlite-1.3.5e-11.el7.aarch64.rpm | 0d4ed782346b0816aac7613c6f85367e1ff433069e68cc3048d1e9b79e3757d9 | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| proftpd-utils-1.3.5e-11.el7.aarch64.rpm | b1b929f1f80228313db7224d7e4c816f2e18f2aac4b3808d405e14dfc40b0fd0 | ELBA-2022-19876 | ol7_aarch64_developer_EPEL | |
| Oracle Linux 7 (x86_64) | proftpd-1.3.5e-11.el7.src.rpm | f429b5b54e28ec73d0efb70735922cf4607437656cffa2b1d947a7235d377639 | ELBA-2022-19876 | ol7_x86_64_developer_EPEL |
| proftpd-1.3.5e-11.el7.x86_64.rpm | 14e4499b5c87c125e515c3e4acfa991b93b630abed7794316fa3a3c088dfa63b | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
| proftpd-devel-1.3.5e-11.el7.x86_64.rpm | ce8889cbf14e1f14ee808a9b3482e6f5298291e306786d6bb269a0f31b7032ce | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
| proftpd-ldap-1.3.5e-11.el7.x86_64.rpm | 0689489b9bc20a0759009c0045776867a7228d370922287960840724b6913489 | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
| proftpd-mysql-1.3.5e-11.el7.x86_64.rpm | 2d7648b68699140f86ec5df3835082b2bfdc2d56ce894b232b3eee7a30f914a6 | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
| proftpd-postgresql-1.3.5e-11.el7.x86_64.rpm | b3ccca04b02b4b518eea7026be18705bd8184cdc7af59195e70b51ba66d0360a | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
| proftpd-sqlite-1.3.5e-11.el7.x86_64.rpm | 9255fd7ee9286743a3790ec6d6ed5f6c9d83d5de84cb2913a769ca8128c04bc2 | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
| proftpd-utils-1.3.5e-11.el7.x86_64.rpm | d1a29a6366388375976fd518554b2c7db939dcd526c143f545b5bcd2db2144a0 | ELBA-2022-19876 | ol7_x86_64_developer_EPEL | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
