Information on source package lftp

Available versions

ReleaseVersion
buster4.8.4-2
bullseye4.8.4-2
bookworm4.9.2-2
trixie4.9.2-2
sid4.9.2-2

Resolved issues

BugDescription
TEMP-0774769-57BAAAsaves unknown host's fingerprint in known_hosts without any prompt
CVE-2018-10916It has been discovered that lftp up to and including version 4.8.3 doe ...
CVE-2010-2251The get1 command, as used by lftpget, in LFTP before 4.0.6 does not pr ...
CVE-2007-2348mirror --script in lftp before 3.5.9 does not properly quote shell met ...
CVE-2003-0963Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for ...

Security announcements

DSA / DLADescription
DSA-2085-1lftp - file overwrite vulnerability
DSA-406lftp - buffer overflow
Search for package or bug name: Reporting problems