FS#67777 - [bftpd] out of bounds memory access, file descriptor leak and potential buffer overflows.
Attached to Project:
Arch Linux
Opened by loqs (loqs) - Sunday, 30 August 2020, 21:52 GMT
Last edited by freswa (frederik) - Sunday, 13 September 2020, 14:39 GMT
Opened by loqs (loqs) - Sunday, 30 August 2020, 21:52 GMT
Last edited by freswa (frederik) - Sunday, 13 September 2020, 14:39 GMT
|
Details
Description:
An out of bounds memory read when fetching options was fixed in 5.3. A potential off by one heap issue when reading during transferring files was fixed in 5.4. A file descriptor leak that could cause the bftpd server to run out of available files it can open when storing/uploading files was fixed in 5.5. A potential buffer overflow in directory listing was fixed in 5.6. A potential overflow in rare cases in the string handling code was fixed in 5.6 Additional info: * bftpd 5.2-2 * http://bftpd.sourceforge.net/news.html |
This task depends upon
Closed by freswa (frederik)
Sunday, 13 September 2020, 14:39 GMT
Reason for closing: Fixed
Additional comments about closing: 5.6-1
Sunday, 13 September 2020, 14:39 GMT
Reason for closing: Fixed
Additional comments about closing: 5.6-1