Site Navigation:
security proftpd-1.3.4d-4.fc20 security update
Status:stable
Release: Fedora 20
Update ID: FEDORA-2013-16790
Builds: proftpd-1.3.4d-4.fc20 (logs)
Pushed: True
Date Submitted: 2013-09-14 20:37:00
Date Released: 2013-09-15 17:22:56
Date Modified: 2013-09-17 14:12:14
Submitter: pghmcfc
Karma: 1
Stable karma: 2
Unstable karma: -2
Details

This update addresses an issue with mod_sftp and mod_sftp_pam in which a malicious client could cause the server to make extremely large memory requests and potentially crash.

Bugs Fixed
1007679 - proftpd: mod_sftp/mod_sftp_pam invalid pool allocation during kbdint authentication [fedora-all]
Feedback
bodhi - 2013-09-14 20:37:10
This update has been submitted for testing by pghmcfc.
bodhi - 2013-09-15 16:56:00
This update is currently being pushed to the Fedora 20 testing updates repository.
bodhi - 2013-09-15 17:37:00
This update has been pushed to testing
besser82 - 2013-09-15 18:04:19
LGTM! No issues for me. :-)
bodhi - 2013-09-22 22:10:04
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes
bodhi - 2013-09-23 07:14:02
This update has been submitted for stable by pghmcfc.
bodhi - 2013-09-23 16:27:55
This update is currently being pushed to the Fedora 20 stable updates repository.
bodhi - 2013-09-24 00:30:03
This update has been pushed to stable

Add a comment

Tip: Login to impact how quickly this update gets pushed or unpushed.
obfuscated letters