Overview

File _patchinfo of Package patchinfo.18253

<patchinfo incident="18253">
  <issue tracker="bnc" id="1218344">VUL-0: CVE-2023-51713: proftpd: make_ftp_cmd in main.c has a one-byte out-of-bounds read, and daemon crash</issue>
  <issue tracker="bnc" id="1218144">VUL-0: CVE-2023-48795: proftpd: prefix truncation breaking ssh channel integrity</issue>
  <issue tracker="cve" id="2023-48795"/>
  <issue tracker="cve" id="2023-51713"/>
  <packager>computersalat</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for proftpd</summary>
  <description>This update for proftpd fixes the following issues:

proftpd was updated to 1.3.8b - released 19-Dec-2023

- CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity (boo#1218144)
- CVE-2023-51713: Fixed Out-of-bounds buffer read when handling FTP commands. (boo#1218344)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places