Google Git
Sign in
android-kvm / buildroot / 7ba4aa92981107462e23c4a7d2b1ef291743fe81
commit7ba4aa92981107462e23c4a7d2b1ef291743fe81[log] [tgz]
authorFabrice Fontaine <fontaine.fabrice@gmail.com>Fri Nov 27 21:11:28 2020 +0100
committerPeter Korsgaard <peter@korsgaard.com>Sat Nov 28 09:24:09 2020 +0100
treedd569d8e49e08c68691c76ee9100859dd57d9a11
parent282fc60ed4bbf30f0c74fe0434053b472eca356b [diff]
package/proftpd: security bump to version 1.3.6e

1.3.6e
---------
  + Fixed null pointer deference in mod_sftp when using SCP incorrectly
    (Issue #1043).

1.3.6d
---------
  + Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959).

1.3.6c
---------
  + Fixed regression in directory listing latency (Issue #863).
  + Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for
    converting them to supported format.
  + Fixed use-after-free vulnerability during data transfers (Issue #903)
    [CVE-2020-9273]
  + Fixed out-of-bounds read in mod_cap by updating the bundled libcap
    (Issue #902) [CVE-2020-9272]

http://proftpd.org/docs/RELEASE_NOTES-1.3.6e

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[Peter: mark as security bump, add CVEs]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2 files changed
tree: dd569d8e49e08c68691c76ee9100859dd57d9a11
  1. arch/
  2. board/
  3. boot/
  4. configs/
  5. docs/
  6. fs/
  7. linux/
  8. package/
  9. support/
  10. system/
  11. toolchain/
  12. utils/
  13. .defconfig
  14. .flake8
  15. .gitignore
  16. .gitlab-ci.yml
  17. CHANGES
  18. Config.in
  19. Config.in.legacy
  20. COPYING
  21. DEVELOPERS
  22. Makefile
  23. Makefile.legacy
  24. README