godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-05 14:09:53 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
4eace1bdff006e69ec87a26e31abaab799e5ff84
buildroot/package/pure-ftpd
History
Fabrice Fontaine 1536f80f4d package/pure-ftpd: fix CVE-2020-9274 
An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer
vulnerability has been detected in the diraliases linked list. When the
*lookup_alias(const char alias) or print_aliases(void) function is
called, they fail to correctly detect the end of the linked list and try
to access a non-existent list member. This is related to init_aliases in
diraliases.c.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 1d8426b32c)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-04-07 20:34:03 +02:00
..
0001-listdir-reuse-a-single-buffer-to-store-every-file-name-to-display.patch
0002-pure_strcmp-len-s2-can-be-len-s1.patch
0003-diraliases-always-set-the-tail-of-the-list-to-NULL.patch
package/pure-ftpd: fix CVE-2020-9274
2020-04-07 20:34:03 +02:00
Config.in
pure-ftpd.hash
pure-ftpd.mk
package/pure-ftpd: fix CVE-2020-9274
2020-04-07 20:34:03 +02:00