proftpd-1.3.6e-1.10 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11196-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z proftpd-1.3.6e-1.10 on GA media These are all security issues fixed in the proftpd-1.3.6e-1.10 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11196 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-5815/ SUSE CVE CVE-2006-5815 page https://www.suse.com/security/cve/CVE-2017-7418/ SUSE CVE CVE-2017-7418 page https://www.suse.com/security/cve/CVE-2019-12815/ SUSE CVE CVE-2019-12815 page https://www.suse.com/security/cve/CVE-2019-18217/ SUSE CVE CVE-2019-18217 page https://www.suse.com/security/cve/CVE-2019-19269/ SUSE CVE CVE-2019-19269 page https://www.suse.com/security/cve/CVE-2020-9272/ SUSE CVE CVE-2020-9272 page https://www.suse.com/security/cve/CVE-2020-9273/ SUSE CVE CVE-2020-9273 page openSUSE Tumbleweed proftpd-1.3.6e-1.10 proftpd-devel-1.3.6e-1.10 proftpd-doc-1.3.6e-1.10 proftpd-lang-1.3.6e-1.10 proftpd-ldap-1.3.6e-1.10 proftpd-mysql-1.3.6e-1.10 proftpd-pgsql-1.3.6e-1.10 proftpd-radius-1.3.6e-1.10 proftpd-sqlite-1.3.6e-1.10 proftpd-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-devel-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-doc-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-lang-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-ldap-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-mysql-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-pgsql-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-radius-1.3.6e-1.10 as a component of openSUSE Tumbleweed proftpd-sqlite-1.3.6e-1.10 as a component of openSUSE Tumbleweed Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit." CVE-2006-5815 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 moderate 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-5815.html CVE-2006-5815 ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass the AllowChrootSymlinks control by replacing a path component (other than the last one) with a symbolic link. The threat model includes an attacker who is not granted full filesystem access by a hosting provider, but can reconfigure the home directory of an FTP user. CVE-2017-7418 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 important 2.1 AV:L/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7418.html CVE-2017-7418 https://bugzilla.suse.com/1032443 SUSE Bug 1032443 An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306. CVE-2019-12815 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 critical 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-12815.html CVE-2019-12815 https://bugzilla.suse.com/1142281 SUSE Bug 1142281 ProFTPD before 1.3.6b and 1.3.7rc before 1.3.7rc2 allows remote unauthenticated denial-of-service due to incorrect handling of overly long commands because main.c in a child process enters an infinite loop. CVE-2019-18217 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-18217.html CVE-2019-18217 https://bugzilla.suse.com/1154600 SUSE Bug 1154600 An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup. CVE-2019-19269 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 moderate 4 AV:N/AC:L/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-19269.html CVE-2019-19269 https://bugzilla.suse.com/1157803 SUSE Bug 1157803 ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function. CVE-2020-9272 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 important 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-9272.html CVE-2020-9272 https://bugzilla.suse.com/1164572 SUSE Bug 1164572 In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in alloc_pool in pool.c, and possible remote code execution. CVE-2020-9273 openSUSE Tumbleweed:proftpd-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-devel-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-doc-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-lang-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-ldap-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-mysql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-pgsql-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-radius-1.3.6e-1.10 openSUSE Tumbleweed:proftpd-sqlite-1.3.6e-1.10 important 9 AV:N/AC:L/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-9273.html CVE-2020-9273 https://bugzilla.suse.com/1164574 SUSE Bug 1164574