Information on source package pure-ftpd

Available versions

ReleaseVersion
stretch1.0.43-3
buster1.0.47-3
sid1.0.49-4

Open issues

BugstretchbustersidDescription
CVE-2020-9365vulnerable (no DSA)vulnerable (no DSA)fixedAn issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) re ...
CVE-2020-9274vulnerable (no DSA)vulnerable (no DSA)fixedAn issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer ...
CVE-2020-35359undeterminedundeterminedundeterminedPure-FTPd 1.0.48 allows remote attackers to prevent legitimate server ...
CVE-2019-20176vulnerable (no DSA)vulnerable (no DSA)fixedIn Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the li ...

Resolved issues

BugDescription
TEMP-0000000-00657Fpure-ftpd-mysql: any problems with a home dir will allow rw to the entire filesystem
CVE-2017-12170Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vuln ...
CVE-2011-1575The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 ...
CVE-2011-0988pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and S ...
CVE-2011-0418The glob implementation in Pure-FTPd before 1.0.32, and in libc in Net ...
CVE-2004-0656The accept_client function in PureFTPd 1.0.18 and earlier allows remot ...

Security announcements

DSA / DLADescription
DLA-2123-1pure-ftpd - security update

Search for package or bug name: Reporting problems