On Fri, 7 Jun 2019 22:20:45 +0900 Kentaro Hayashi
wrote:
> Hi,
>
> I'm not a user of filezilla, but I've picked it up fixing RC bug as a
> challenge.
> I've attached debdiff to fix CVE-2019-5429 using tracker information as a
> hint.
>
> I hope it will help to close this bug.
I've added +pa
Hi,
I'm not a user of filezilla, but I've picked it up fixing RC bug as a challenge.
I've attached debdiff to fix CVE-2019-5429 using tracker information as a hint.
I hope it will help to close this bug.
Regards,
diff -Nru filezilla-3.39.0/debian/changelog filezilla-3.39.0/debian/changelog
---
Source: filezilla
Version: 3.39.0-2
Severity: grave
Tags: security upstream
Hi,
The following vulnerability was published for filezilla.
CVE-2019-5429[0]:
| Untrusted search path in FileZilla before 3.41.0-rc1 allows an
| attacker to gain privileges via a malicious 'fzsftp' binary in the
| user'
3 matches
Mail list logo
