ALT-PU-2023-5874-2
Closed vulnerabilities
BDU:2019-04710
Уязвимость компонента main.c FTP-сервера ProFTPD, связанная с выполнением цикла с недоступным условием выхода, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2020-05776
Уязвимость реализации функции alloc_pool FTP-сервера ProFTPD, позволяющая нарушителю выполнить произвольный код
BDU:2023-05663
Уязвимость FTP-сервера ProFTPD , связанная с ошибкой освобождения памяти, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Modified: 2024-11-21
CVE-2017-7418
ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass the AllowChrootSymlinks control by replacing a path component (other than the last one) with a symbolic link. The threat model includes an attacker who is not granted full filesystem access by a hosting provider, but can reconfigure the home directory of an FTP user.
- http://bugs.proftpd.org/show_bug.cgi?id=4295
- http://bugs.proftpd.org/show_bug.cgi?id=4295
- openSUSE-SU-2019:1836
- openSUSE-SU-2019:1836
- openSUSE-SU-2019:1870
- openSUSE-SU-2019:1870
- openSUSE-SU-2020:0031
- openSUSE-SU-2020:0031
- 97409
- 97409
- https://github.com/proftpd/proftpd/commit/ecff21e0d0e84f35c299ef91d7fda088e516d4ed
- https://github.com/proftpd/proftpd/commit/ecff21e0d0e84f35c299ef91d7fda088e516d4ed
- https://github.com/proftpd/proftpd/commit/f59593e6ff730b832dbe8754916cb5c821db579f
- https://github.com/proftpd/proftpd/commit/f59593e6ff730b832dbe8754916cb5c821db579f
- https://github.com/proftpd/proftpd/pull/444/commits/349addc3be4fcdad9bd4ec01ad1ccd916c898ed8
- https://github.com/proftpd/proftpd/pull/444/commits/349addc3be4fcdad9bd4ec01ad1ccd916c898ed8
Modified: 2024-11-21
CVE-2019-18217
ProFTPD before 1.3.6b and 1.3.7rc before 1.3.7rc2 allows remote unauthenticated denial-of-service due to incorrect handling of overly long commands because main.c in a child process enters an infinite loop.
- openSUSE-SU-2020:0031
- openSUSE-SU-2020:0031
- https://cert-portal.siemens.com/productcert/pdf/ssa-940889.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-940889.pdf
- https://github.com/proftpd/proftpd/blob/1.3.6/NEWS
- https://github.com/proftpd/proftpd/blob/1.3.6/NEWS
- https://github.com/proftpd/proftpd/blob/1.3.6/RELEASE_NOTES
- https://github.com/proftpd/proftpd/blob/1.3.6/RELEASE_NOTES
- https://github.com/proftpd/proftpd/blob/master/NEWS
- https://github.com/proftpd/proftpd/blob/master/NEWS
- https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
- https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
- https://github.com/proftpd/proftpd/issues/846
- https://github.com/proftpd/proftpd/issues/846
- [debian-lts-announce] 20191027 [SECURITY] [DLA 1974-1] proftpd-dfsg security update
- [debian-lts-announce] 20191027 [SECURITY] [DLA 1974-1] proftpd-dfsg security update
- FEDORA-2019-ae019c7e9f
- FEDORA-2019-ae019c7e9f
- FEDORA-2019-7559f29ace
- FEDORA-2019-7559f29ace
- FEDORA-2019-848e410cfb
- FEDORA-2019-848e410cfb
- 20191106 [SECURITY] [DSA 4559-1] proftpd-dfsg security update
- 20191106 [SECURITY] [DSA 4559-1] proftpd-dfsg security update
- GLSA-202003-35
- GLSA-202003-35
- DSA-4559
- DSA-4559
Modified: 2024-11-21
CVE-2019-19269
An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup.
- openSUSE-SU-2020:0031
- openSUSE-SU-2020:0031
- https://github.com/proftpd/proftpd/issues/861
- https://github.com/proftpd/proftpd/issues/861
- [debian-lts-announce] 20191130 [SECURITY] [DLA 2018-1] proftpd-dfsg security update
- [debian-lts-announce] 20191130 [SECURITY] [DLA 2018-1] proftpd-dfsg security update
- FEDORA-2019-65a983b8b6
- FEDORA-2019-65a983b8b6
- FEDORA-2019-bfacf1e958
- FEDORA-2019-bfacf1e958
- GLSA-202003-35
- GLSA-202003-35
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://www.oracle.com/security-alerts/cpuapr2020.html
Modified: 2024-11-21
CVE-2019-19270
An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. Failure to check for the appropriate field of a CRL entry (checking twice for subject, rather than once for subject and once for issuer) prevents some valid CRLs from being taken into account, and can allow clients whose certificates have been revoked to proceed with a connection to the server.
Modified: 2024-11-21
CVE-2020-9272
ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.
- openSUSE-SU-2020:0273
- openSUSE-SU-2020:0273
- https://cert-portal.siemens.com/productcert/pdf/ssa-679335.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-679335.pdf
- https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
- https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
- https://github.com/proftpd/proftpd/issues/902
- https://github.com/proftpd/proftpd/issues/902
- GLSA-202003-35
- GLSA-202003-35
Modified: 2024-11-21
CVE-2020-9273
In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in alloc_pool in pool.c, and possible remote code execution.
- openSUSE-SU-2020:0273
- openSUSE-SU-2020:0273
- [oss-security] 20210824 Possible memory leak on getspnam / getspnam_r
- [oss-security] 20210824 Possible memory leak on getspnam / getspnam_r
- [oss-security] 20210906 Re: Possible memory leak on getspnam / getspnam_r
- [oss-security] 20210906 Re: Possible memory leak on getspnam / getspnam_r
- https://cert-portal.siemens.com/productcert/pdf/ssa-679335.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-679335.pdf
- https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
- https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
- https://github.com/proftpd/proftpd/issues/903
- https://github.com/proftpd/proftpd/issues/903
- [debian-lts-announce] 20200221 [SECURITY] [DLA 2115-1] proftpd-dfsg security update
- [debian-lts-announce] 20200221 [SECURITY] [DLA 2115-1] proftpd-dfsg security update
- [debian-lts-announce] 20200302 [SECURITY] [DLA 2115-2] proftpd-dfsg regression update
- [debian-lts-announce] 20200302 [SECURITY] [DLA 2115-2] proftpd-dfsg regression update
- FEDORA-2020-876b1f664e
- FEDORA-2020-876b1f664e
- FEDORA-2020-76c707cff0
- FEDORA-2020-76c707cff0
- GLSA-202003-35
- GLSA-202003-35
- DSA-4635
- DSA-4635
Modified: 2024-11-21
CVE-2021-46854
mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.
- http://www.proftpd.org/docs/RELEASE_NOTES-1.3.7e
- http://www.proftpd.org/docs/RELEASE_NOTES-1.3.7e
- https://bugs.gentoo.org/811495
- https://bugs.gentoo.org/811495
- https://github.com/proftpd/proftpd/issues/1284
- https://github.com/proftpd/proftpd/issues/1284
- https://github.com/proftpd/proftpd/pull/1285
- https://github.com/proftpd/proftpd/pull/1285
- GLSA-202305-03
- GLSA-202305-03
Closed bugs
proftpd: unknown configuration directive 'IdentLookups'