[Buildroot] [PATCH 1/1] package/proftpd: bump to version 1.3.6e
Peter Korsgaard
peter at korsgaard.com
Sat Nov 28 08:26:41 UTC 2020
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:
> 1.3.6e
> ---------
> + Fixed null pointer deference in mod_sftp when using SCP incorrectly
> (Issue #1043).
> 1.3.6d
> ---------
> + Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959).
> 1.3.6c
> ---------
> + Fixed regression in directory listing latency (Issue #863).
> + Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for
> converting them to supported format.
> + Fixed use-after-free vulnerability during data transfers (Issue #903).
> + Fixed out-of-bounds read in mod_cap by updating the bundled libcap
> (Issue #902).
> http://proftpd.org/docs/RELEASE_NOTES-1.3.6e
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
Committed after marking it as a security bump and adding the affected
CVEs, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list