2343476 – pure-ftpd-1.0.52 is available for a while now and fixed CVE-2024-48208

Bug 2343476 - pure-ftpd-1.0.52 is available for a while now and fixed CVE-2024-48208

Summary: pure-ftpd-1.0.52 is available for a while now and fixed CVE-2024-48208

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	pure-ftpd
Sub Component:
Version:	42
Hardware:	Unspecified
OS:	Linux
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Assignee:	Jonathan Wright
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-02-03 06:19 UTC by Danie de Jager
Modified:	2025-05-20 00:49 UTC (History)
CC List:	3 users (show)
Fixed In Version:	pure-ftpd-1.0.52-1.fc43
Clone Of:
Environment:
Last Closed:	2025-05-20 00:49:34 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Danie de Jager 2025-02-03 06:19:25 UTC

Please look into updating pure-ftpd-1.0.52 as a newer version is available

It seems to fix CVE-2024-48208:
https://www.cvedetails.com/vulnerability-list/vendor_id-2152/year-2024/Pureftpd.html

https://github.com/jedisct1/pure-ftpd/releases

Reproducible: Always

Comment 1 Aoife Moloney 2025-02-26 13:49:53 UTC

This bug appears to have been reported against 'rawhide' during the Fedora Linux 42 development cycle.
Changing version to 42.

Comment 2 Fedora Update System 2025-05-20 00:46:18 UTC

FEDORA-2025-bfd9912822 (pure-ftpd-1.0.52-1.fc43) has been submitted as an update to Fedora 43.
https://bodhi.fedoraproject.org/updates/FEDORA-2025-bfd9912822

Comment 3 Fedora Update System 2025-05-20 00:49:34 UTC

FEDORA-2025-bfd9912822 (pure-ftpd-1.0.52-1.fc43) has been pushed to the Fedora 43 stable repository.
If problem still persists, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.