diff options
author | Martin Matuska <mm@FreeBSD.org> | 2017-07-27 09:55:29 +0000 |
---|---|---|
committer | Martin Matuska <mm@FreeBSD.org> | 2017-07-27 09:55:29 +0000 |
commit | 165c80f0bdee127ba640178efd31a80eb9110d0c (patch) | |
tree | 71433f2e538a3103cc6238dfbcc0c694f2f5a44f /security | |
parent | 2438cfbd2b8866c52cafa774ee93949d1c92aad9 (diff) | |
download | ports-165c80f0bdee127ba640178efd31a80eb9110d0c.tar.gz ports-165c80f0bdee127ba640178efd31a80eb9110d0c.zip |
Notes
Diffstat (limited to 'security')
-rw-r--r-- | security/vuxml/vuln.xml | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 62bbd348875b..ce070379e24d 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -71,11 +71,11 @@ Notes: <p>NVD reports:</p> <blockquote cite="https://nvd.nist.gov/vuln/detail/CVE-2017-7418"> <p>ProFTPD ... controls whether the home directory of a user could - contain a symbolic link through the AllowChrootSymlinks - configuration option, but checks only the last path component when - enforcing AllowChrootSymlinks. Attackers with local access could - bypass the AllowChrootSymlinks control by replacing a path - component (other than the last one) with a symbolic link.</p> + contain a symbolic link through the AllowChrootSymlinks + configuration option, but checks only the last path component when + enforcing AllowChrootSymlinks. Attackers with local access could + bypass the AllowChrootSymlinks control by replacing a path + component (other than the last one) with a symbolic link.</p> </blockquote> </body> </description> |