GCVE-VVD-MAGEIA-2019-314 — Vulnetix

GCVE-VVD-MAGEIA-2019-314

Advisory Published

Vulnetix · Advisory published November 7, 2019

Updated proftpd package fixes security vulnerabilities: It was discovered that the mod_copy module of ProFTPD, a FTP/SFTP/FTPS server, performed incomplete permission validation for the CPFR/CPTO commands (CVE-2019-12815). It was discovered that due to incorrect handling of overly long commands, a remote unauthenticated user could trigger a denial-of-service by reaching an endless loop (CVE-2019-18217).

Download JSON Open in Console

Affected Products

Vendor	Product	Versions	Platforms
Mageia	proftpd	0 (affected), 1.3.5e-4.1.mga7 (unaffected)	—

Aliases

CVE-2019-12817 CVE-2019-12815

Transitive aliases

GHSA-f989-xw5v-4w5p GHSA-47g7-45f4-j83m SUSE-SU-2019:1769-1 GSD-2019-12817 BDU:2019-02507 VVD-GENTOO-2019-690528 EUVD-2019-4396 BDU:2019-02747 OPENSUSE-SU-2019:1757-1 RHSA-2019:2703 SUSE-SU-2019:1744-1 CNVD-2019-38523 SUSE-SU-2019:1765-1 EUVD-2019-4398

References

Updated proftpd packages fix security vulnerabilities

advisory

Updated proftpd packages fix security vulnerabilities

issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON

$ Console Community · 100/wk Open console ›