openSUSE Recommended Update: Recommended update for vsftpd ______________________________________________________________________________ Announcement ID: openSUSE-RU-2017:2603-1 Rating: moderate References: #1042137 #1044292 #1048427 #1052900 Affected Products: openSUSE Leap 42.3 openSUSE Leap 42.2 ______________________________________________________________________________ An update that has four recommended fixes can now be installed. Description: This update for vsftpd provides the following fixes: - Fix a bug in vsftpd that would cause SSL protocol errors, aborting the connection, whenever system errors occurred that were supposed to be non-fatal. (bsc#1044292) - Fix a seccomp failure that happens in FIPS mode when SSL is enabled. (bsc#1052900) - Allow the FTP server to append to a file system pipe. (bsc#1048427) - Create a new configuration option "address_space_limit", which determines the memory limit vsftpd configures for its own process (given in bytes). The previously hard-coded limit (100 MB) may not be sufficient for vsftpd servers running with certain PAM modules enabled, and in such cases administrators may wish to raise the limit to match their system's requirements. (bsc#1042137) This update was imported from the SUSE:SLE-12:Update update project. Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2017-1106=1 - openSUSE Leap 42.2: zypper in -t patch openSUSE-2017-1106=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.3 (i586 x86_64): vsftpd-3.0.2-25.1 vsftpd-debuginfo-3.0.2-25.1 vsftpd-debugsource-3.0.2-25.1 - openSUSE Leap 42.2 (i586 x86_64): vsftpd-3.0.2-21.6.1 vsftpd-debuginfo-3.0.2-21.6.1 vsftpd-debugsource-3.0.2-21.6.1 References: https://bugzilla.suse.com/1042137 https://bugzilla.suse.com/1044292 https://bugzilla.suse.com/1048427 https://bugzilla.suse.com/1052900