[Buildroot] [PATCH 1/1] package/proftpd: bump to version 1.3.6e
Peter Korsgaard
peter at korsgaard.com
Fri Dec 11 21:25:30 UTC 2020
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice at gmail.com> writes:
>> 1.3.6e
>> ---------
>> + Fixed null pointer deference in mod_sftp when using SCP incorrectly
>> (Issue #1043).
>> 1.3.6d
>> ---------
>> + Fixed issue with FTPS uploads of large files using TLSv1.3 (Issue #959).
>> 1.3.6c
>> ---------
>> + Fixed regression in directory listing latency (Issue #863).
>> + Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for
>> converting them to supported format.
>> + Fixed use-after-free vulnerability during data transfers (Issue #903).
>> + Fixed out-of-bounds read in mod_cap by updating the bundled libcap
>> (Issue #902).
>> http://proftpd.org/docs/RELEASE_NOTES-1.3.6e
>> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
> Committed after marking it as a security bump and adding the affected
> CVEs, thanks.
Committed to 2020.02.x and 2020.08.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list