[SECURITY] [DLA 1753-3] proftpd-dfsg regression update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1753-3] proftpd-dfsg regression update
From: Markus Koschany <apo@debian.org>
Date: Tue, 21 May 2019 17:06:45 +0200
Message-id: <[🔎] 23b02a61-fbe8-b2f8-2b5b-57a67ed6ed96@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : proftpd-dfsg
Version        : 1.3.5e+r1.3.5-2+deb8u2
Debian Bug     : 929020

The update of proftpd-dfsg issued as DLA-1753-1 caused a regression
when the creation of a directory failed during sftp transfer. The sftp
session would be terminated instead of failing gracefully due to a
non-existing debug logging function.

For Debian 8 "Jessie", this problem has been fixed in version
1.3.5e+r1.3.5-2+deb8u2.

We recommend that you upgrade your proftpd-dfsg packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=pEWD
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1798-1] jackson-databind security update
Next by Date: [SECURITY] [DLA 1800-1] firefox-esr security update
Previous by thread: [SECURITY] [DLA 1798-1] jackson-databind security update
Next by thread: [SECURITY] [DLA 1800-1] firefox-esr security update
Index(es):
- Date
- Thread