1565 matches found
openSUSE 15 Security Update : proftpd (openSUSE-SU-2023:0421-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0421-1 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity...
Fedora: Security Advisory (FEDORA-2023-153404713b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for proftpd (important)
openSUSE Security Update: Security update for proftpd Announcement ID: openSUSE-SU-2023:0421-1 Rating: important References: Cross-References: CVE-2023-48795 CVSS scores: CVE-2023-48795 NVD : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2023-48795 SUSE: 5.9...
MGASA-2023-0356 Updated proftpd packages fix a security vulnerability
ProFTPd upstream has released version 1.3.8b to fix CVE-2023-48795. From the changelog: - Implemented mitigations for "Terrapin" SSH attack CVE-2023-48795...
Updated proftpd packages fix a security vulnerability
ProFTPd upstream has released version 1.3.8b to fix CVE-2023-48795. From the changelog: - Implemented mitigations for "Terrapin" SSH attack CVE-2023-48795...
Vulnerability fixed in ProFTPd
A vulnerability has been fixed in ProFTPd. The vulnerability allows an authenticated remote malicious person to perform a denial-of-service DoS via a specially prepared command to cause a denial-of-service DoS cause. The developers of ProFTP have released updates to fix the vulnerability. For mor...
Fedora 38 : proftpd (2023-b87ec6cf47)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-b87ec6cf47 advisory. Security fix for CVE-2023-48795 Terrapin SSH protocol attack, affecting modsftp. Tenable has extracted the preceding description block directly from...
Fedora 39 : proftpd (2023-153404713b)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-153404713b advisory. Security fix for CVE-2023-48795 Terrapin SSH protocol attack, affecting modsftp. Tenable has extracted the preceding description block directly from...
GLSA-202312-16 : libssh: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202312-16 libssh: Multiple Vulnerabilities - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are...
SUSE CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
DEBIAN-CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
UBUNTU-CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
Out-of-bounds
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
CVE-2023-51713
ProFTPD (make_ftp_cmd in main.c) is affected by CVE-2023-51713 in versions before 1.3.8a due to a one-byte out-of-bounds read caused by mishandling of quote/backslash semantics, leading to daemon crashes. Affected advisories reference ProFTPD before 1.3.8a across multiple vendors (Debian, Ubuntu,...
ProFTPd Security Vulnerability
ProFTPd is a highly configurable open source FTP server software. A security vulnerability exists in ProFTPd versions prior to 1.3.8a, which stems from improper handling of the semantics of the makeftpcmd function in the file main.c, resulting in an out-of-bounds read vulnerability and a daemon...
CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...