FEDORA-2019-65a983b8b6 — security update for proftpd

proftpd-1.3.6b-2.fc30

FEDORA-2019-65a983b8b6 created by pghmcfc 5 months ago for Fedora 30

stable

This update addresses a number of bugs affecting processing of CRLs in mod_tls, including possible null pointer dereferences and missing some checks. Thanks to Lionel Debroux for reporting them.

How to install

sudo dnf upgrade --advisory=FEDORA-2019-65a983b8b6

This update has been submitted for testing by pghmcfc.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'ignored'.

5 months ago

pghmcfc edited this update.

5 months ago

This update has been pushed to testing.

5 months ago

This update can be pushed to stable now if the maintainer wishes

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata

Type

security

Severity

low

Karma

Signed

Content Type

RPM

Test Gating

Builds

proftpd-1.3.6b-2.fc30

Settings

Unstable by Karma

-1

Stable by Karma

Stable by Time

7 days

Dates

submitted

5 months ago

in testing

5 months ago

in stable

4 months ago

modified

5 months ago

BZ#1777975 CVE-2019-19269 proftpd: NULL pointer dereference when validating the certificate of a client connecting to the server

BZ#1777976 CVE-2019-19269 proftpd: NULL pointer dereference when validating the certificate of a client connecting to the server [fedora-all]

BZ#1778258 CVE-2019-19270 proftpd: failure to check for the appropriate field of a CRL entry prevents some valid CRLs from being taken into account

BZ#1778260 CVE-2019-19270 proftpd: failure to check for the appropriate field of a CRL entry prevents some valid CRLs from being taken into account [fedora-all]

proftpd-1.3.6b-2.fc30

How to install

Automated Test Results