[OpenWrt-Devel] [CC 15.05-rc3] vsftpd: Security update (CVE-2015-1419)
jow at openwrt.org
jow at openwrt.org
Wed Jul 22 04:23:11 EDT 2015
The vsftpd package has been rebuilt and was uploaded to the Chaos Calmer
15.05 Release Candicate 3 repository due to a reported security issue.
VERSION
3.0.2-4 => 3.0.2-4.1
CHANGELOG
[Wed, 22 Jul 2015 09:47:48 +0200 bcedf17]
Vsftpd: CVE-2015-1419
Unspecified vulnerability in vsftp 3.0.2 and earlier allows remote
attackers to bypass access restrictions via unknown vectors, related to
deny_file parsing.
CHANGES
net/vsftpd/Makefile | 4 +-
net/vsftpd/patches/007-CVE-2015-1419.patch | 98 ++++++++++++++++++++
2 files changed, 100 insertions(+), 2 deletions(-)
REFERENCES
* https://github.com/openwrt/packages/commit/bcedf17632e6944edb999853de6beba8fa56624b
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
More information about the openwrt-devel
mailing list