make_ftp_cmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics. https://github.com/proftpd/proftpd/blob/1.3.8/NEWS https://github.com/proftpd/proftpd/issues/1683 https://github.com/proftpd/proftpd/issues/1683#issuecomment-1712887554 https://github.com/proftpd/proftpd/commit/1376d8ccc0966d1ce9a1c76b32c6a9ca61bbe67f https://github.com/proftpd/proftpd/commit/97bbe68363ccf2de0c07f67170ec64a8b4d62592
Created proftpd tracking bugs for this issue: Affects: epel-all [bug 2255610] Affects: fedora-all [bug 2255611]