Nuglaanta halista ah (CVE-2019-12815) ayaa lagu aqoonsaday ProFTPd (server-ka caanka ah ee ftp). Hawlgalku wuxuu kuu ogolaanayaa inaad nuqul ka sameysid faylasha gudaha server-ka adigoon hubin adigoo isticmaalaya amarrada "site cpfr" iyo "site cpto", oo ay ku jiraan server-yada leh gelitaanka qarsoodiga ah.
Nuglaanta waxaa sabab u ah hubinta khaldan ee xaddidaadaha gelitaanka xogta akhriska iyo qorista (Limit READ and Limit WRITE) ee moduleka mod_copy, kaas oo si caadi ah loo isticmaalo oo awood u siinaya baakadaha proftpd inta badan qaybinta.
Dhammaan noocyada hadda ee dhammaan qaybinta marka laga reebo Fedora waa nugul yihiin. Hagaajinta hadda waa la heli karaa sida balastar. Sida xal ku meel gaar ah, waxaa lagu talinayaa in la joojiyo mod_copy.
Source: linux.org.ru