Information on source package lftp

Available versions

ReleaseVersion
jessie4.6.0-1+deb8u1
stretch4.7.4-1
buster4.8.4-2
bullseye4.8.4-2
sid4.8.4-2

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2018-10916vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIt has been discovered that lftp up to and including version 4.8.3 doe ...

Resolved issues

BugDescription
TEMP-0774769-57BAAAsaves unknown host's fingerprint in known_hosts without any prompt
CVE-2010-2251The get1 command, as used by lftpget, in LFTP before 4.0.6 does not pr ...
CVE-2007-2348mirror --script in lftp before 3.5.9 does not properly quote shell met ...
CVE-2003-0963Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for ...

Security announcements

DSA / DLADescription
DSA-2085-1lftp - file overwrite vulnerability
DSA-406lftp - buffer overflow

Search for package or bug name: Reporting problems