Bug 37056 - CVE-2019-12815
Summary: CVE-2019-12815
Status: CLOSED FIXED
Alias: None
Product: Sisyphus
Classification: Development
Component: proftpd (show other bugs)
Version: unstable
Hardware: all Linux
: P3 major
Assignee: Konstantin A Lepikhov (L.A. Kostis)
QA Contact: qa-sisyphus
URL: https://www.opennet.ru/opennews/art.s...
Keywords:
Depends on:
Blocks:
 
Reported: 2019-07-23 23:16 MSK by Michael Shigorin
Modified: 2019-07-30 22:45 MSK (History)
2 users (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Shigorin 2019-07-23 23:16:58 MSK
Выпуска пока не было, есть патч: https://github.com/proftpd/proftpd/pull/816
Comment 1 Konstantin A Lepikhov (L.A. Kostis) 2019-07-24 01:04:37 MSK
http://webery.altlinux.org/log/sisyphus/building/235057/logs/events.1.1.log
Comment 2 Michael Shigorin 2019-07-24 07:47:21 MSK
Спасибо; наверное, можно его run --commit и тогда уж дело будет за сборочницей.
Comment 3 Repository Robot 2019-07-30 22:45:46 MSK
proftpd-1.3.6-alt0.1.ga73dbfe3b -> sisyphus:

Tue Jul 23 2019 L.A. Kostis <lakostis@altlinux.ru> 1.3.6-alt0.1.ga73dbfe3b
- Updated to 1.3.6-ga73dbfe3b.
- Fix mod_copy bug #4372 (Ensure that mod_copy checks for <Limits> for its SITE
  CPFR) (CVE-2019-12815) (closes #37056).
- Updated mod_sql_postgres patch.
- Updated -pcre patch.