Security update for proftpd
This update for proftpd fixes the following issues:
- CVE-2024-57392: Null pointer dereference vulnerability by sending a maliciously crafted message (boo#1236889).
- CVE-2024-48651: Supplemental group inheritance grants unintended access to GID 0 (boo#1233997).
-
Submitted by
Christian Wittmer (computersalat)
Fixed bugs
bnc#1233997
VUL-0: CVE-2024-48651: proftpd: supplemental group inheritance grants unintended access to GID 0
bnc#1236889
VUL-0: CVE-2024-57392: proftpd: null pointer dereference vulnerability by sending a maliciously crafted message
