[Git][security-tracker-team/security-tracker][master] Add CVE-2020-9273/proftpd-dfsg
Salvatore Bonaccorso
carnil at debian.org
Fri Feb 21 09:19:10 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4e6d32b8 by Salvatore Bonaccorso at 2020-02-21T10:18:27+01:00
Add CVE-2020-9273/proftpd-dfsg
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -105,7 +105,10 @@ CVE-2020-9275
CVE-2020-9274
RESERVED
CVE-2020-9273 (In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interru ...)
- TODO: check
+ - proftpd-dfsg 1.3.6c-1
+ NOTE: https://github.com/proftpd/proftpd/issues/903
+ NOTE: https://github.com/proftpd/proftpd/commit/d388f7904d4c9a6d0ea54237b8b54a57c19d8d49 (master)
+ NOTE: https://github.com/proftpd/proftpd/commit/e845abc1bd86eebec7a0342fded908a1b0f1996b (1.3.6.c)
CVE-2020-9272 (ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap ...)
- proftpd-dfsg 1.3.6c-1 (unimportant)
NOTE: https://github.com/proftpd/proftpd/issues/902
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e6d32b8c630d41662dabf9307ad4fa9def7e49d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e6d32b8c630d41662dabf9307ad4fa9def7e49d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200221/956efe48/attachment.html>
More information about the debian-security-tracker-commits
mailing list