SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for proftpd-1.3.0a-3tr.i586.rpm :
Mon Feb 26 13:00:00 2007 Nived Gopalan
- Rebuilt

Mon Dec 18 13:00:00 2006 Nived Gopalan 1.3.0a-2tr
- SECURITY Fix: Alfredo Ortega has reported a vulnerability in the
mod_ctrls module for ProFTPD, caused due to a boundary error within
the \"pr_ctrls_recv_request()\" function in src/ctrls.c. This can be
exploited to cause a buffer overflow by sending specially crafted
control messages to the module.

The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2006-6563 to this issue.

Wed Dec 6 13:00:00 2006 Bipin S 1.3.0a-1tr
- New upstream.
- SECURITY Fix: Stack-based buffer overflow in the sreplace function
allows remote attackers to cause a denial of service, as demonstrated
by vd_proftpd.pm, a \"ProFTPD remote exploit.\"

The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2006-5815 to this issue.

- NOTE: In November 2006, the role of CommandBufferSize was originally
associated with CVE-2006-5815, but this was an error stemming from
an initial vague disclosure. Correct CVE: CVE-2006-6171.

Mon Nov 27 13:00:00 2006 Nived Gopalan 1.3.0-3tr
- Security fix for mod_tls.

Thu Nov 23 13:00:00 2006 Nived Gopalan 1.3.0-2tr
- SECURITY Fix: Evgeny Legerov has reported a vulnerability in ProFTPD,
caused due to a buffer overflow error in the \"main.c\" file where the
\"cmd_buf_size\" size of the buffer used to handle FTP commands sent
by clients is not properly set to the size configured via the
\"CommandBufferSize\" directive. This can be exploited by malicious
people to compromise a vulnerable system.

The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2006-5815 to this issue.

Wed Nov 1 13:00:00 2006 Bipin S 1.3.0-1tr
- New upstream.

Tue Aug 2 14:00:00 2005 Syed Shabir Zakiullah 1.2.10-9tr
- Security Fix: Format string vulnerabilities
- Two vulnerabilities have been reported in ProFTPD, which can be
exploited by malicious users to disclose certain sensitive
information, cause a DoS (Denial of Service), or potentially
compromise a vulnerable system.

The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2005-2390 to this issue

Wed Apr 27 14:00:00 2005 Bipin S 1.2.10-7tr
- Touched seperate log files in /var/log/proftpd/.
- Changed SystemLog entry for proftpd.conf
- Inspired from Bug #450

Wed Apr 20 14:00:00 2005 Bipin S 1.2.10-6tr
- changed init priority

Thu Mar 31 14:00:00 2005 Ajith Thampi 1.2.10-5tr
- Rebuilt with perl.req fix

Fri Mar 18 13:00:00 2005 Hasher Jamaludeen 1.2.10-3tr
- Rebuilt

Thu Mar 3 13:00:00 2005 Ajith Thampi 1.2.10-3tr
- Rebuild with gnutls

Tue Nov 9 13:00:00 2004 Oystein Viggen 1.2.10-2tr
- Rebuild with shared openssl

Tue Sep 21 14:00:00 2004 Ajith Thampi 1.2.10-1tr
- New Upstream.
- Removed patch2
- Additional module mod_wrap introduced.

Fri Apr 30 14:00:00 2004 Oystein Viggen 1.2.9-7tr
- Patch bug with cidr acl entries

Mon Mar 1 13:00:00 2004 Erlend Midttun 1.2.9-5tr
- Removed ldap and mysql requirement.

Sun Jan 25 13:00:00 2004 Erlend Midttun 1.2.9-3tr
- Adapted for Trustix 2.1.

Wed Dec 3 13:00:00 2003 Erlend Midttun 1.2.9-2tr
- Big rebuild

Thu Nov 20 13:00:00 2003 Tor Hveem 1.2.9-1th
- New upstream version
- Removed patch1
- Included some more modules and added som BuilReqs

Sun Sep 28 14:00:00 2003 Chr. Toldnes 1.2.8-10tsl
- port to tawie

Wed Sep 24 14:00:00 2003 Chr. Toldnes 1.2.8-9tr
- Retagged and rebuilt

Tue Sep 23 14:00:00 2003 Goetz Bock 1.2.8-8bg
- added patch (well diff) for upload bug from 1.2.8p

Mon Jun 23 14:00:00 2003 Erlend Midttun 1.2.8-7tr
- Added %defattr.

Wed Jun 18 14:00:00 2003 Erlend Midttun 1.2.8-6tr
- Big rebuild

Tue Jun 10 14:00:00 2003 Erlend Midttun 1.2.8-5em
- Remove anonftp Req.

Sat Jun 7 14:00:00 2003 Erlend Midttun 1.2.8-4em
- Removed /home/ftp, Req anonftp to fix file conflict.

Mon May 26 14:00:00 2003 Erlend Midttun 1.2.8-3em
- fileutils -> coreutils.

Mon Mar 24 13:00:00 2003 Erlend Midttun 1.2.8-2em
- Rebuilt against glibc 2.3.2.

Wed Mar 19 13:00:00 2003 Tor Hveem 1.2.8-1th
- 1.2.8
- removed TSL patch.
- fixed pam module name.
- added lots of deps.

Fri Feb 28 13:00:00 2003 Erlend Midttun 1.2.6-5em
- Added %attr.
- Removed noreplace.

Sun Jan 19 13:00:00 2003 Gerald Dachs 1.2.6-4gd
- rebuilt against openssl 0.9.7

Thu Nov 21 13:00:00 2002 Christian H. Toldnes 1.2.6-3ct
- initscript now uses $INITLOCK

Thu Oct 3 14:00:00 2002 Christian H. Toldnes 1.2.6-2ct
- Moved initscript to fit TSL 2.0

Wed Sep 11 14:00:00 2002 Erlend Midttun
- Upgraded to 1.2.6
- Added TLS patch.

Thu Jan 3 13:00:00 2002 Christian H. Toldnes
- Upgraded to 1.2.4
- Chkconfig bug now fixed.
- General packages cleanup.

Mon May 14 14:00:00 2001 Oystein Viggen
- configure does not use more than 1 --with-modules

Wed Mar 28 14:00:00 2001 Alexander Reelsen
- Short term security fix

Tue Mar 6 13:00:00 2001 Oystein Viggen
- Update to v1.2.1

Wed Feb 14 13:00:00 2001 Erlend Midttun
- Fixed typo in default config file.

Fri Nov 3 13:00:00 2000 Erlend Midttun
- Trying to do ftpusers again.

Tue Sep 12 14:00:00 2000 Per Ivar Paulsen
- Updated to rc2

Wed Jul 26 14:00:00 2000 Oystein Viggen
- Generate /etc/ftpusers during install

Fri Mar 17 13:00:00 2000 Per Ivar Paulsen
- Added better default configuration

Mon Jan 24 13:00:00 2000 Per Ivar Paulsen
- Initial release for the Trustix Secure Linux distribution.
- Added noreplace.
- Moved man and info pages to /usr/share adhering to FHS
- Picked up ProFTPd 1.2.0pre10

Sun Oct 3 14:00:00 1999 O.Elliyasa
- Multi package creation.
Created core, standalone, inetd (&doc) package creations.
Added startup script for init.d
Need to make the \"standalone & inetd\" packages being created as \"noarch\"
- Added URL.
- Added prefix to make the package relocatable.

Wed Sep 8 14:00:00 1999 O.Elliyasa
- Corrected inetd.conf line addition/change logic.

Sat Jul 24 14:00:00 1999 MacGyver
- Initial import of spec.


  
ICM