Bftpd Project: Security Vulnerabilities
An issue was discovered in Bftpd before 5.4. There is a heap-based off-by-one error during file-transfer error checking.
CVSS Score
9.8
EPSS Score
0.003
Published
2020-01-10
An issue was discovered in Bftpd 5.3. Under certain circumstances, an out-of-bounds read is triggered due to an uninitialized value. The daemon crashes at startup in the hidegroups_init function in dirlist.c.
CVSS Score
9.1
EPSS Score
0.004
Published
2020-01-10
In Bftpd before 4.7, there is a memory leak in the file rename function.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-11-19