A proftpd-dfsg security update has been released for Debian GNU/Linux 8 and 9 Extended LTS to address an issue where mod_radius allows memory disclosure to RADIUS servers.
ELA-757-1 proftpd-dfsg security update
Package : proftpd-dfsg
ELA-757-1 proftpd-dfsg security update
Version : 1.3.5e+r1.3.5-2+deb8u8 (jessie), 1.3.5e+r1.3.5b-4+deb9u3 (stretch)
Related CVEs :
CVE-2021-46854
It was discovered that mod_radius in ProFTPD, a versatile, virtual-hosting FTP daemon, allows memory disclosure to RADIUS servers.
