Advisories ยป MGASA-2013-0295

Updated proftpd package fixes security vulnerability

Publication date: 05 Oct 2013
Modification date: 05 Oct 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4359

Description

A bug in ProFTPd's mod_sftp and mod_sftp_pam modules can be used to
trigger a large heap allocation and exhaust all available system memory of
the underlying operating system (CVE-2013-4359).
                

References

SRPMS

2/core

3/core