aboutsummaryrefslogtreecommitdiff
path: root/security
diff options
context:
space:
mode:
authorMartin Matuska <mm@FreeBSD.org>2017-07-27 09:55:29 +0000
committerMartin Matuska <mm@FreeBSD.org>2017-07-27 09:55:29 +0000
commit165c80f0bdee127ba640178efd31a80eb9110d0c (patch)
tree71433f2e538a3103cc6238dfbcc0c694f2f5a44f /security
parent2438cfbd2b8866c52cafa774ee93949d1c92aad9 (diff)
downloadports-165c80f0bdee127ba640178efd31a80eb9110d0c.tar.gz
ports-165c80f0bdee127ba640178efd31a80eb9110d0c.zip
Notes
Diffstat (limited to 'security')
-rw-r--r--security/vuxml/vuln.xml10
1 files changed, 5 insertions, 5 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 62bbd348875b..ce070379e24d 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -71,11 +71,11 @@ Notes:
<p>NVD reports:</p>
<blockquote cite="https://nvd.nist.gov/vuln/detail/CVE-2017-7418">
<p>ProFTPD ... controls whether the home directory of a user could
- contain a symbolic link through the AllowChrootSymlinks
- configuration option, but checks only the last path component when
- enforcing AllowChrootSymlinks. Attackers with local access could
- bypass the AllowChrootSymlinks control by replacing a path
- component (other than the last one) with a symbolic link.</p>
+ contain a symbolic link through the AllowChrootSymlinks
+ configuration option, but checks only the last path component when
+ enforcing AllowChrootSymlinks. Attackers with local access could
+ bypass the AllowChrootSymlinks control by replacing a path
+ component (other than the last one) with a symbolic link.</p>
</blockquote>
</body>
</description>