vsftpd-2.2.2-6.AXS4.1
エラータID: AXSA:2011-88:01
Release date:
Friday, March 11, 2011 - 15:31
Subject:
vsftpd-2.2.2-6.AXS4.1
Affected Channels:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
vsftpd is a Very Secure FTP daemon. It was written completely from scratch.
Security issues fixed with this release:
CVE-2011-0762
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.
Solution:
Update packages.
CVEs:
CVE-2011-0762
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.
Additional Info:
N/A
Download:
SRPMS
- vsftpd-2.2.2-6.AXS4.1.src.rpm
MD5: 190f2ce9077964e6ddf9ff4af8270c8e
SHA-256: 8ffd0664b66544becd238f67a45b04a3b2fe8c7bc88649166645f0566a2c64ff
Size: 224.08 kB
Asianux Server 4 for x86
- vsftpd-2.2.2-6.AXS4.1.i686.rpm
MD5: 7b26b3f62e5b2873c31e3ea3bd900edb
SHA-256: 1dcb48194cdcccddf89c0b177724092172199c917d67f2394bed84e441a5af99
Size: 154.53 kB
Asianux Server 4 for x86_64
- vsftpd-2.2.2-6.AXS4.1.x86_64.rpm
MD5: 6a7c1768e882ca298a24479a30cc2cf0
SHA-256: 85c6b7e2b1cfb0d5b024b786427be8df7ec3428811341bc399af8489ae5e28ba
Size: 148.66 kB