~ubuntu-branches/ubuntu/lucid/vsftpd/lucid-security

Committer: Package Import Robot
Author(s): Jamie Strandboge
Date: 2011-12-01 13:59:04 UTC
mfrom: (28.1.1 lucid-updates)
Revision ID: package-import@ubuntu.com-20111201135904-28cat93vhn5g6mr6

Tags: 2.2.2-3ubuntu6.3

* SECURITY UPDATE: remote DoS via network namespaces
  - debian/patches/12-CVE-2011-2189.patch: only use network namespaces
    on 2.6.36 and higher kernels
  - patch based on Debian's patch
  - CVE-2011-2189

files added:
debian/patches/12-CVE-2011-2189.patch

files modified:
debian/changelog

debian/patches/series

debian/vsftpd.postinst

debian/vsftpd.upstart

Show diffs side-by-side

added added

removed removed

debian/changelog

vsftpd (2.2.2-3ubuntu6.3) lucid-security; urgency=low

* SECURITY UPDATE: remote DoS via network namespaces

- debian/patches/12-CVE-2011-2189.patch: only use network namespaces

on 2.6.36 and higher kernels

- patch based on Debian's patch

- CVE-2011-2189

-- Jamie Strandboge <jamie@ubuntu.com> Thu, 01 Dec 2011 13:59:04 -0600

vsftpd (2.2.2-3ubuntu6.2) lucid-proposed; urgency=low

* debian/vsftpd.upstart:

- Fix typo. Thanks to Jürgen Kreileder (LP: #577165)

- Fix start of vsftpd even if not in standalone mode. Thanks to

Stephane Chazelas (LP: #648202)

[ Dustin Kirkland, Serge Hallyn ]

* debian/vsftpd.postinst: Check that the group exists first, then the user,

then try adding the user to the group. (LP: #629234, LP: #677764)

-- Andres Rodriguez <andreserl@ubuntu.com> Wed, 13 Apr 2011 18:34:25 -0400

vsftpd (2.2.2-3ubuntu6.1) lucid-security; urgency=low

* SECURITY UPDATE: denial of service via crafted glob expressions

Older »