Updated proftpd package fixes security vulnerability
Publication date: 05 Oct 2013Modification date: 05 Oct 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4359
Description
A bug in ProFTPd's mod_sftp and mod_sftp_pam modules can be used to trigger a large heap allocation and exhaust all available system memory of the underlying operating system (CVE-2013-4359).
References
SRPMS
2/core
- proftpd-1.3.3g-1.3.mga2
3/core
- proftpd-1.3.4c-2.1.mga3