The OES Netware add-ons in pure-ftpd had a security problem
and some bugs, which are fixed by this update.
A local attacker could overwrite local files when the OES
remote server feature of pure-ftpd is enabled due to a
directory traversal. (CVE-2011-3171)
Additionally the following bugs have been fixed:
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
SUSE Linux Enterprise Desktop | 10.4 | i586 | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.i586.rpm |
SUSE Linux Enterprise Server | 10.4 | s390x | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.s390x.rpm |
SUSE Linux Enterprise Server | 10.4 | ppc | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.ppc.rpm |
SUSE Linux Enterprise Server | 10.4 | x86_64 | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.x86_64.rpm |
SUSE Linux Enterprise Server | 10.4 | i586 | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.i586.rpm |
SUSE Linux Enterprise Desktop | 10.4 | x86_64 | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.x86_64.rpm |
SUSE Linux Enterprise Server | 10.4 | ia64 | pure-ftpd | < 1.0.22-0.26.1 | pure-ftpd-1.0.22-0.26.1.ia64.rpm |