Debian Long Term Support / LTS Security Information / 2015 / Security Information -- DLA-269-1 linux-ftpd-ssl

Debian Security Advisory

DLA-269-1 linux-ftpd-ssl -- LTS security update

Date Reported:

07 Jul 2015

Affected Packages:

linux-ftpd-ssl

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 788331.

More information:

The issue is due to a case of missing brackets in the patch '500-ssl.diff', which causes the execution of 'fclose(NULL)' and thus displays as a segmentation fault. The error appears while transmogrifying 'linux-ftpd' into 'linux-ftpd-ssl'.

There is no CVE assigned to this issue.

The patch was created by Mats Erik Andersson.