|
[asl-2.0] psa-proftpd 1.3.3c-2 for Plesk 10 |
|
Wednesday, 10 November 2010 08:15 |
|
This is a minor update to psa-proftpd 1.3.3 to support Plesk 10 environments. Note: This package is also duplicated in the [atomic] channel.
Changelog:
- This package obsoletes psa-proftpd-xinetd that is used on Plesk 9.x systems
- Merges in contents from psa-proftd-xinetd (xinet and conf files) into a single package.
To upgrade:
yum upgrade psa-proftpd
|
|
|
[asl-2.0] psa-proftpd 1.3.3c |
|
Monday, 01 November 2010 18:24 |
|
Atomicorp Security Advisory
Level: Moderate to High
This is an important security update for psa-proftpd. Versions from 1.2.10rc1 to 1.3.3b are vulnerable to certain classes of attack that would allow a malicious user to:
- create a directory located outside the writable directory
- delete a directory located outside the writable directory
- create a symlink located outside the writable directory
- change the time of a file located outside the writable directory
It is highly recommended that psa-proftpd users upgrade to 1.3.3c at their earliest opportunity.
Changelog:
- Update to version 1.3.3c
To upgrade:
yum upgrade psa-proftpd
Credits: We would like to thank BruceLee for bringing this issue to our attention, and the proftpd team for their rapid response in resolving this issue. |
|
|
<< Start < Prev 1 2 Next > End >>
|
|
Page 2 of 2 |
News 