diff --git a/proftpd-1.3.8b.tar.gz b/proftpd-1.3.8b.tar.gz deleted file mode 100644 index 01afd3f..0000000 --- a/proftpd-1.3.8b.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:183ab7c6107de271a2959ff268f55c9b6c76b2cf0029e6584fccc019686601e0 -size 19752808 diff --git a/proftpd-1.3.8b.tar.gz.asc b/proftpd-1.3.8b.tar.gz.asc deleted file mode 100644 index baa3083..0000000 --- a/proftpd-1.3.8b.tar.gz.asc +++ /dev/null @@ -1,7 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Comment: GPGTools - https://gpgtools.org - -iEYEABECAAYFAmWCcGMACgkQt46JP6URl2rOOACgqd6poiniUeOej3gVoE4ZHA1Z -PKgAoKgsyi9zqoilnOtZJKfzWw4BJ546 -=GIJC ------END PGP SIGNATURE----- diff --git a/proftpd-1.3.8c.tar.gz b/proftpd-1.3.8c.tar.gz new file mode 100644 index 0000000..147e125 --- /dev/null +++ b/proftpd-1.3.8c.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:2a48f2ca338456e750d2373bf671025ed799e04e0baa16c7bb8dbfd67d8734d2 +size 19751847 diff --git a/proftpd-1.3.8c.tar.gz.asc b/proftpd-1.3.8c.tar.gz.asc new file mode 100644 index 0000000..eb81939 --- /dev/null +++ b/proftpd-1.3.8c.tar.gz.asc @@ -0,0 +1,6 @@ +-----BEGIN PGP SIGNATURE----- + +iF0EABECAB0WIQRpfmhNFmjWloQoQFy3jok/pRGXagUCZ1nafgAKCRC3jok/pRGX +arsZAKDP6Vk4oWO9BB0TbMnNNe1TRZwjOwCdH+pBD7f0WDsf6cO4D9oF6iqNgvY= +=YGOJ +-----END PGP SIGNATURE----- diff --git a/proftpd-no_BuildDate.patch b/proftpd-no_BuildDate.patch index f92b99e..1633bd9 100644 --- a/proftpd-no_BuildDate.patch +++ b/proftpd-no_BuildDate.patch @@ -99,5 +99,5 @@ Index: include/version.h -#include "buildstamp.h" - /* Application version (in various forms) */ - #define PROFTPD_VERSION_NUMBER 0x0001030807 - #define PROFTPD_VERSION_TEXT "1.3.8b" + #define PROFTPD_VERSION_NUMBER 0x0001030808 + #define PROFTPD_VERSION_TEXT "1.3.8c" diff --git a/proftpd.changes b/proftpd.changes index 0d67ef4..c8c0cc1 100644 --- a/proftpd.changes +++ b/proftpd.changes @@ -1,3 +1,15 @@ +------------------------------------------------------------------- +Thu Jan 9 17:25:19 UTC 2025 - chris@computersalat.de + +- 1.3.8c - Released 11-Dec-2024 + fix for boo#1233997 (CVE-2024-48651) + * http://proftpd.org/docs/NEWS-1.3.8c + gh#1830 - Supplemental group inheritance grants unintended access to GID 0 + due to lack of supplemental groups from mod_sql + https://github.com/proftpd/proftpd/issues/1830 +- rebase patch + * proftpd-no_BuildDate.patch + ------------------------------------------------------------------- Thu Feb 29 14:45:47 UTC 2024 - Dominique Leuenberger diff --git a/proftpd.spec b/proftpd.spec index 9078659..2bb6052 100644 --- a/proftpd.spec +++ b/proftpd.spec @@ -1,7 +1,7 @@ # # spec file for package proftpd # -# Copyright (c) 2024 SUSE LLC +# Copyright (c) 2025 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -33,7 +33,7 @@ Summary: Configurable GPL-licensed FTP server software # We only accept updates for "STABLE" Versions License: GPL-2.0-or-later Group: Productivity/Networking/Ftp/Servers -Version: 1.3.8b +Version: 1.3.8c Release: 0 URL: http://www.proftpd.org/ Source0: ftp://ftp.proftpd.org/distrib/source/%{name}-%{version}.tar.gz