Alerts This Week
Warning Icon 1 684
Alerts This Week
Warning Icon 1 684

Slackware: SSA:2012-041-04 Critical: Proftpd Memory Corruption

slackware
Calendar Grey February 10, 2012
Dist Slackware Esm H88
Updated versions of proftpd released for Slackware, targeting vulnerabilities related to memory corruption and enhanced security measures.
New proftpd packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues

Summary

Here are the details from the Slackware 13.37 ChangeLog: patches/packages/proftpd-1.3.4a-i486-1_slack13.37.txz: Upgraded. This update fixes a use-after-free() memory corruption error, and possibly other unspecified issues. For more information, see: https://www.cve.org/CVERecord?id=CVE-2011-4130 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical memory corruption security fix slackware proftpd

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 11.0: ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/proftpd-1.3.4a-i486-1_slack11.0.tgz
Updated package for Slackware 12.0: ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/proftpd-1.3.4a-i486-1_slack12.0.tgz
Updated package for Slackware 12.1: ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/proftpd-1.3.4a-i486-1_slack12.1.tgz
Updated package for Slackware 12.2: ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/proftpd-1.3.4a-i486-1_slack12.2.tgz
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware 13.1:
Updated package for Slackware x86_64 13.1:
Updated package for Slackwa...

Read the Full Advisory

MD5 Signatures

Slackware 11.0 package: 07257d37b1708251a2a3871dd87c6be6 proftpd-1.3.4a-i486-1_slack11.0.tgz
Slackware 12.0 package: 6a1773e304fb56f433f6651d15a83080 proftpd-1.3.4a-i486-1_slack12.0.tgz
Slackware 12.1 package: f439c8d0c8dcad1947cdfc27774ae757 proftpd-1.3.4a-i486-1_slack12.1.tgz
Slackware 12.2 package: 5007c64cfb653341a20aac54844962ad proftpd-1.3.4a-i486-1_slack12.2.tgz
Slackware 13.0 package: b4c65dc4b953d54dfcbc963cfefde842 proftpd-1.3.4a-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: bdf2bd5539abeb25da7c9000d570b946 proftpd-1.3.4a-x86_64-1_slack13.0.txz
Slackware 13.1 package: c6f98a0fa8f1cbdc47268aade1b62b29 proftpd-1.3.4a-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: a40c013d52e807e5de691cda8156af03 proftpd-1.3.4a-x86_64-1_slack13.1.txz
Slackware 13.37 package: 13309d7eba5b374664e7c616e951d382 proftpd-1.3.4a-i486-1_slack13.37.txz
Slackware x86_64 13.37 package: 74b653449b982a9e498888f6d8705039 proftpd-1.3.4a-x86_64-1_slack13.37.txz
Slackware -current package: 3cfb497c816c56a3cd80a850c30fc0bf n/proftpd-1.3.4a-i486-1.txz
Slackware x86_64 -current package: 90acd5c6075d01b013704b1b8aedfcf3 n/proftpd-1.3.4a-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical memory corruption security fix slackware proftpd

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg proftpd-1.3.4a-i486-1_slack13.37.txz

Related News

Your message here