Tuesday 23rd July 2019
Fedora Project
Updated proftpd 1.3.6 in F29, F-30 and Rawhide to address an arbitrary file copy vulnerability in mod_copy in ProFTPD, which allowed for remote code execution and information disclosure without authentication (Upstream Bug#4372, GH#816, CVE-2019-12815)
Updated proftpd-1.3.5e in EPEL-7 to address the same issue
Local Packages
Updated proftpd (1.3.6) as per the Fedora version