PaulHowarth/Blog/2024-12-12

Thursday 12th December 2024

Fedora Project

  • Updated proftpd to 1.3.8c in F-40, F-41, Rawhide and EPEL-9:

    • Using FTPS after upgrading from 1.3.8a to 1.3.8b lead to crash (GH#1770)

    • Bad handling of lack of extended attributes lead to SFTP out of memory error (GH#1785)

    • mod_sftp_sql logged "header value too long" due to unexpected key header text (GH#1529)

    • SSH ECDSA host key algorithms were not used as expected despite configuring appropriate key (GH#1839)

    • RADIUS Message-Authenticator verification failed with ProFTPD mod_radius (GH#1840)

    • Supplemental group inheritance granted unintended access to GID 0 due to lack of supplemental groups from mod_sql (GH#1830)

  • Updated proftpd to 1.3.9rc3 with mod_vroot 0.9.12 in EPEL-10:

    • Bad handling of lack of extended attributes lead to SFTP out of memory error (GH#1785)

    • Using mod_facl and mod_vroot at same time caused unexpected permissions issues (GH#1780)

    • mod_sftp_sql logged "header value too long" due to unexpected key header text (GH#1529)

    • SFTP statvfs extension failed when mod_vroot was in use (GH#1792)

    • Implement limits@openssh.com SFTP extension (GH#1798)

    • Implement SFTPAuthPublicKeys directive for configuring the list of public key algorithms allowed for authentication (GH#1806)

    • Fix stack trace changing to directory with DisplayChdir file using %F variable on a large filesystem (GH#1819)

    • Remove inherited supplemental groups when started with root privileges (GH#1836)

    • SSH ECDSA host key algorithms were not used as expected despite configuring appropriate key (GH#1839)

    • RADIUS Message-Authenticator verification failed with ProFTPD mod_radius (GH#1840)

    • Supplemental group inheritance granted unintended access to GID 0 due to lack of supplemental groups from mod_sql (GH#1830)

  • mod_vroot 0.9.12:

    • Implement a realpath(3) callback for the FSIO API, for better interoperability of other modules when mod_vroot is in effect

Local Packages

  • Updated proftpd to 1.3.8c as per the Fedora version

  • Updated proftpd (1.3.9) to 1.3.9rc3 and mod_vroot 0.9.12 as per the EPEL-10 version

Recent