[OpenWrt-Devel] [CC 15.05-rc3] vsftpd: Security update (CVE-2015-1419)

jow at openwrt.org jow at openwrt.org
Wed Jul 22 04:23:11 EDT 2015


The vsftpd package has been rebuilt and was uploaded to the Chaos Calmer
15.05 Release Candicate 3 repository due to a reported security issue.


VERSION

3.0.2-4 => 3.0.2-4.1


CHANGELOG

[Wed, 22 Jul 2015 09:47:48 +0200 bcedf17]

Vsftpd: CVE-2015-1419

Unspecified vulnerability in vsftp 3.0.2 and earlier allows remote
attackers to bypass access restrictions via unknown vectors, related to
deny_file parsing.


CHANGES

 net/vsftpd/Makefile                        |    4 +-
 net/vsftpd/patches/007-CVE-2015-1419.patch |   98 ++++++++++++++++++++
 2 files changed, 100 insertions(+), 2 deletions(-)


REFERENCES

 * https://github.com/openwrt/packages/commit/bcedf17632e6944edb999853de6beba8fa56624b
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel



More information about the openwrt-devel mailing list