openSUSE Security Update : proftpd (openSUSE-2015-410)
Critical Nessus Plugin ID 84134
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThe ftp server ProFTPD was updated to 1.3.5a to fix one security issue.
The following vulnerability was fixed :
- CVE-2015-3306: Unauthenticated copying of files via SITE CPFR/CPTO allowed by mod_copy (boo#927290)
In addition, proftpd was updated to 1.3.5a to fix a number of upstream bugs and improve functionality.
SolutionUpdate the affected proftpd packages.