Slackware: 2020-051-01 Moderate: Proftpd Memory Pool Issue

slackware

February 20, 2020

New proftpd packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/proftpd-1.3.6c-i586-1_slack14.2.txz: Upgraded. No CVEs assigned, but this sure looks like a security issue: Use-after-free vulnerability in memory pools during data transfer. (* Security fix *)

Topics Covered

security advisory software update security fix slackware proftpd data transfer memory pool

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.0 package: ad130cbacf59ba92d23da0b8c6dd5c8e proftpd-1.3.6c-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: e0e9d4bfd44229fc5cbb0d16decd62e1 proftpd-1.3.6c-x86_64-1_slack14.0.txz
Slackware 14.1 package: 8e3126f9af6dbbf817bd43e77ca9cc8d proftpd-1.3.6c-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: ea71c0df4222e5b2046876aef3461acc proftpd-1.3.6c-x86_64-1_slack14.1.txz
Slackware 14.2 package: cff0f04f8d96e58c9315900ab27e770a proftpd-1.3.6c-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: 993452ec1b0c1a6785a09d0e960be20c proftpd-1.3.6c-x86_64-1_slack14.2.txz
Slackware -current package: 8c5c8c09c9ce10219fd92ecf72f742cf n/proftpd-1.3.6c-i586-1.txz
Slackware x86_64 -current package: 346f1b9c24259e9f61e1063a15bdbef1 n/proftpd-1.3.6c-x86_64-1.txz

Topics Covered

security advisory software update security fix slackware proftpd data transfer memory pool

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg proftpd-1.3.6c-i586-1_slack14.2.txz

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Slackware: 2020-051-01 Moderate: Proftpd Memory Pool Issue

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Slackware: 2020-051-01 Moderate: Proftpd Memory Pool Issue

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!