Red Hat Bugzilla – Bug 683221
CVE-2011-1575 pure-ftpd: command injection during plaintext to TLS session switch
Last modified: 2012-08-16 14:41:08 EDT
Pure-FTPd has released version 1.0.30 which fixes a STARTTLS flaw similar to Postfix's CVE-2011-0411 . Upgrading is recommended.
Created pure-ftpd tracking bugs for this issue
Affects: fedora-all [bug 683223]
Affects: epel-all [bug 683224]
This was assigned the name CVE-2011-1575: