Miroirs/slackware-current
1
0
Fork 0
mirror of git://slackware.nl/current.git synced 2024-12-27 09:59:16 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
slackware-current/source/n/lftp
History
Patrick J Volkerding 564ec5a0ac Thu Aug 2 20:12:10 UTC 2018 
ap/hplip-3.18.7-x86_64-1.txz:  Upgraded.
l/harfbuzz-1.8.5-x86_64-1.txz:  Upgraded.
n/lftp-4.8.4-x86_64-1.txz:  Upgraded.
  It has been discovered that lftp up to and including version 4.8.3 does
  not properly sanitize remote file names, leading to a loss of integrity
  on the local system when reverse mirroring is used. A remote attacker
  may trick a user to use reverse mirroring on an attacker controlled FTP
  server, resulting in the removal of all files in the current working
  directory of the victim's system.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10916
  (* Security fix *)
x/fonttosfnt-1.0.5-x86_64-1.txz:  Upgraded.
2018-08-03 09:00:36 +02:00
..
doinst.sh Slackware 13.0 2018-05-31 22:41:17 +02:00
lftp.SlackBuild Thu Aug 2 20:12:10 UTC 2018 2018-08-03 09:00:36 +02:00
slack-desc Mon May 28 19:12:29 UTC 2018 2018-05-31 23:39:35 +02:00