Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

Slackware 15.0 Proftpd Critical SQL Injection Bypass Advisory 2026-118-01

slackware
Calendar Grey April 27, 2026
Dist Slackware Esm H88
New proftpd packages for Slackware 15.0 address a critical SQL injection risk that enables authentication bypass and code execution.
New proftpd packages are available for Slackware 15.0 and -current to fix a security issue.

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/proftpd-1.3.9a-i586-1_slack15.0.txz: Upgraded. Fix for an SQL injection that may lead to authentication bypass, privilege escalation, and arbitrary code execution. Slackware does not build mol_sql, but this may be an important upgrade for those rebuilding proftpd in order to add this module. For more information, see: https://www.cve.org/CVERecord?id=CVE-2026-42167 (* Security fix *)

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/proftpd-1.3.9a-i586-1_slack15.0.txz
Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/proftpd-1.3.9a-x86_64-1_slack15.0.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/proftpd-1.3.9a-i686-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/proftpd-1.3.9a-x86_64-1.txz

MD5 Signatures

Slackware 15.0 package: d6021ca5f0a2d00b6f83fb17a5427b66 proftpd-1.3.9a-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: 816e00e7d4eb8c29ecec6c4cf18fcfe8 proftpd-1.3.9a-x86_64-1_slack15.0.txz
Slackware -current package: 5adc7d8127208a0e04255bccc131b35f n/proftpd-1.3.9a-i686-1.txz
Slackware x86_64 -current package: 7b8c0142f02fd71d1e18f395fc9c8c1d n/proftpd-1.3.9a-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg proftpd-1.3.9a-i586-1_slack15.0.txz

Your message here