-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 22 Oct 2010 11:59:54 +0200 Source: proftpd-dfsg Binary: proftpd-basic proftpd-dev proftpd-doc proftpd-mod-mysql proftpd-mod-pgsql proftpd-mod-ldap proftpd-mod-odbc proftpd-mod-sqlite Architecture: source i386 all Version: 1.3.3a-4 Distribution: unstable Urgency: high Maintainer: Francesco Paolo Lovergine <fran...@debian.org> Changed-By: Francesco Paolo Lovergine <fran...@debian.org> Description: proftpd-basic - Versatile, virtual-hosting FTP daemon - binaries proftpd-dev - Versatile, virtual-hosting FTP daemon - development files proftpd-doc - Versatile, virtual-hosting FTP daemon - documentation proftpd-mod-ldap - Versatile, virtual-hosting FTP daemon - LDAP module proftpd-mod-mysql - Versatile, virtual-hosting FTP daemon - MySQL module proftpd-mod-odbc - Versatile, virtual-hosting FTP daemon - ODBC module proftpd-mod-pgsql - Versatile, virtual-hosting FTP daemon - PostgreSQL module proftpd-mod-sqlite - Versatile, virtual-hosting FTP daemon - SQLite3 module Changes: proftpd-dfsg (1.3.3a-4) unstable; urgency=high . * [SECURITY,PATCH] 3519.dpatch fixes Inappropriate directory traversal allowed by mod_site_misc. This vulnerability can be used to: - create a directory located outside the writable directory - delete a directory located outside the writable directory - create a symlink located outside the writable directory - change the time of a file located outside the writable directory. Checksums-Sha1: ad8222c4ae3f86df5d29e5942dee381e67a631a7 1394 proftpd-dfsg_1.3.3a-4.dsc a2dd697bb42ff387f988d38a6b1e49c745405173 100894 proftpd-dfsg_1.3.3a-4.diff.gz 58c95f15971c29564cd5e87e23d9aee1cb35f667 2329016 proftpd-basic_1.3.3a-4_i386.deb 280e5526b2dbe9c72685884fce935ea403daedd1 828744 proftpd-dev_1.3.3a-4_i386.deb fb4d7afeef7ef44bdf8ba0c05c260718e27078a3 345242 proftpd-mod-mysql_1.3.3a-4_i386.deb 2d040b92e47337590a40395716dc65dc7e3b098e 345050 proftpd-mod-pgsql_1.3.3a-4_i386.deb dac32f702bb2aba6865df12b818d19451d95d28d 353764 proftpd-mod-ldap_1.3.3a-4_i386.deb 21992dbd862f11c482754ad6d8c86c973cd470ae 346738 proftpd-mod-odbc_1.3.3a-4_i386.deb 3064686eff7b99a9e95967f8bf545c8158353896 344414 proftpd-mod-sqlite_1.3.3a-4_i386.deb 0bfb8d5bdf173baa76bc2b0d88faede435462e5d 1507652 proftpd-doc_1.3.3a-4_all.deb Checksums-Sha256: 449aec1678cf1bbe9162667db09b333c388516fcc4a1f5c50232b40f4e103096 1394 proftpd-dfsg_1.3.3a-4.dsc 03e56a2de5a1a206a43c49bc6c3bf1baeb68443a3312871d22993c1495612df7 100894 proftpd-dfsg_1.3.3a-4.diff.gz 0db6f2b342a085f14a9d64703e1a23475a568084296dab75ab508225c0cc3f8b 2329016 proftpd-basic_1.3.3a-4_i386.deb bb225172c6d4fbdcce99bde3b5a160028a5cbb783b1349608b35444024d91232 828744 proftpd-dev_1.3.3a-4_i386.deb ca8399388ae32042680e769bbdbdc85fa12132bf778324e2dce9431e2244b1f0 345242 proftpd-mod-mysql_1.3.3a-4_i386.deb c5982e9268bf696c9a07f0d1c3c725825a049db14a0fc0a73f427d47c4902cee 345050 proftpd-mod-pgsql_1.3.3a-4_i386.deb 8dd10791a19153ef4da3b1bbd9211837e0b8a7dbf20a9e40310f0631c492746c 353764 proftpd-mod-ldap_1.3.3a-4_i386.deb 5b10c3c944fdb917550a34bf8cf4cbc26c7e073169f64b661c0043d00c45bed1 346738 proftpd-mod-odbc_1.3.3a-4_i386.deb 8a430c7187f0720abe3c84d02ef7627926af0888cee62356ac512ed30f6fbf40 344414 proftpd-mod-sqlite_1.3.3a-4_i386.deb 55ca16557ed72410789129a6871e4b874f5c73c9e74ffb7596dbfe50e6e86028 1507652 proftpd-doc_1.3.3a-4_all.deb Files: c0d6e5910b90b2001233d9a8d5f6153f 1394 net optional proftpd-dfsg_1.3.3a-4.dsc 73f052cd18d144ad585e1fa7913118db 100894 net optional proftpd-dfsg_1.3.3a-4.diff.gz b9bb3954babe16769d679663a3951b40 2329016 net optional proftpd-basic_1.3.3a-4_i386.deb 27cedb61421402893d0cba2ce65a0056 828744 net optional proftpd-dev_1.3.3a-4_i386.deb b686ecde036e909dcc8aaf05338f2308 345242 net optional proftpd-mod-mysql_1.3.3a-4_i386.deb f959210410fa1d88db7218fcd384950e 345050 net optional proftpd-mod-pgsql_1.3.3a-4_i386.deb 0ae7a882f3b3e5ef0d9da94ad03842d1 353764 net optional proftpd-mod-ldap_1.3.3a-4_i386.deb 1f7860d6b58930d95dec57bc0734a9c8 346738 net optional proftpd-mod-odbc_1.3.3a-4_i386.deb c5b96abbbd26a4054fba7c68746a9a7d 344414 net optional proftpd-mod-sqlite_1.3.3a-4_i386.deb 3e7548da59c74b9b9c7af24e6fe0d922 1507652 doc optional proftpd-doc_1.3.3a-4_all.deb
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkzBZ6MACgkQpFNRmenyx0c7mQCgkTJABAdDp1Gcb3gEUCcB/c4U 6ccAoMrBWXC3PN8xV3r/1LWTCU5w3U8B =/hML -----END PGP SIGNATURE----- Accepted: proftpd-basic_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-basic_1.3.3a-4_i386.deb proftpd-dev_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-dev_1.3.3a-4_i386.deb proftpd-dfsg_1.3.3a-4.diff.gz to main/p/proftpd-dfsg/proftpd-dfsg_1.3.3a-4.diff.gz proftpd-dfsg_1.3.3a-4.dsc to main/p/proftpd-dfsg/proftpd-dfsg_1.3.3a-4.dsc proftpd-doc_1.3.3a-4_all.deb to main/p/proftpd-dfsg/proftpd-doc_1.3.3a-4_all.deb proftpd-mod-ldap_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-mod-ldap_1.3.3a-4_i386.deb proftpd-mod-mysql_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-mod-mysql_1.3.3a-4_i386.deb proftpd-mod-odbc_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-mod-odbc_1.3.3a-4_i386.deb proftpd-mod-pgsql_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-mod-pgsql_1.3.3a-4_i386.deb proftpd-mod-sqlite_1.3.3a-4_i386.deb to main/p/proftpd-dfsg/proftpd-mod-sqlite_1.3.3a-4_i386.deb -- To UNSUBSCRIBE, email to debian-devel-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1p9evx-0000xf...@franck.debian.org