Several vulnerabilities have been discovered in ProFTPD, a versatile,
virtual-hosting FTP daemon:
For the oldstable distribution (lenny), this problem has been fixed in
version 1.3.1-17lenny6.
The stable distribution (squeeze) and the unstable distribution (sid)
are not affected, these vulnerabilities have been fixed prior to the
release of Debian 6.0 (squeeze).
We recommend that you upgrade your proftpd-dfsg packages.