Security update for lftp (moderate)

ID OPENSUSE-SU-2019:1110-1
Type suse
Reporter Suse
Modified 2019-04-02T18:23:10


This update for lftp fixes the following issues: Security issue fixed:

  • CVE-2018-10916: Fixed an improper file name sanitization which could lead to loss of integrity of the local system (bsc#1103367).

Other issue addressed:

  • The SSH login handling code detects password prompts more reliably (bsc#1120946).

This update was imported from the SUSE:SLE-15:Update update project.