FEDORA-EPEL-2019-ef655ec55e created by pghmcfc 11 months ago for Fedora EPEL 7
stable

This update addresses an arbitrary file copy vulnerability in mod_copy in ProFTPD, which allowed for remote code execution and information disclosure without authentication due to not honoring <Limit> constraints.

Upstream bug: http://bugs.proftpd.org/show_bug.cgi?id=4372

The upstream fix for this issue has been back-ported to ProFTPD 1.3.5e for EPEL-7.

This update has been submitted for testing by pghmcfc.

11 months ago

This update test gating status has been changed to 'waiting'.

11 months ago

This update test gating status has been changed to 'ignored'.

11 months ago

This update has been pushed to testing.

11 months ago

This update can be pushed to stable now if the maintainer wishes

10 months ago

This update has been submitted for stable by pghmcfc.

10 months ago

This update has been pushed to stable.

10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
3
Dates
submitted
11 months ago
in testing
11 months ago
in stable
10 months ago
BZ#1732365 CVE-2019-12815 proftpd: file copy vulnerability in mod_copy allows for remote code execution
0
0
BZ#1732367 CVE-2019-12815 proftpd: file copy vulnerability in mod_copy allows for remote code execution [epel-all]
0
0

Automated Test Results