LWN.net Logo

Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

proftpd: denial of service
Package(s):proftpd CVE #(s):CVE-2013-4359
Created:September 24, 2013 Updated:October 7, 2013
Description: From the Red Hat bugzilla:

ProFTPd default installation comes with mod_sftp and mod_sftp_pam activated, which initiates this flaw. The bug is useful to trigger a large heap allocation and exhaust all available system memory of the underlying operating system.

Alerts:
Fedora FEDORA-2013-16810 2013-09-24
Fedora FEDORA-2013-16798 2013-09-24
Gentoo 201309-15 2013-09-24
Debian DSA-2767-1 2013-09-29
Mandriva MDVSA-2013:245 2013-10-03
Mageia MGASA-2013-0295 2013-10-05
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds