Change log : vsftpd package : Ubuntu

3.0.5-0ubuntu3

Published in oracular-release on 2024-04-29

Published in noble-release on 2024-04-04

Deleted in noble-proposed (Reason: Moved to noble)

vsftpd (3.0.5-0ubuntu3) noble; urgency=medium

  * No-change rebuild for CVE-2024-3094

 -- William Grant <email address hidden>  Mon, 01 Apr 2024 19:30:58 +1100

Available diffs

diff from 3.0.5-0ubuntu2 to 3.0.5-0ubuntu3 (306 bytes)

3.0.5-0ubuntu2

Superseded in noble-release on 2024-04-04

Deleted in noble-proposed on 2024-04-05 (Reason: Moved to noble)

vsftpd (3.0.5-0ubuntu2) noble; urgency=medium

  * No-change rebuild against libssl3t64

 -- Steve Langasek <email address hidden>  Tue, 05 Mar 2024 02:12:17 +0000

Available diffs

diff from 3.0.5-0ubuntu1 to 3.0.5-0ubuntu2 (337 bytes)

3.0.5-0ubuntu0.20.04.1

Published in focal-updates on 2023-09-18

Published in focal-security on 2023-09-18

vsftpd (3.0.5-0ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: ALPACA TLS protocol content confusion attack
    - Update to upstream version 3.0.5 to fix security issues.
    - CVE-2021-3618

 -- Marc Deslauriers <email address hidden>  Fri, 15 Sep 2023 11:14:41 -0400

Available diffs

diff from 3.0.3-12 (in Debian) to 3.0.5-0ubuntu0.20.04.1 (6.4 KiB)

3.0.5-0ubuntu1

Deleted in noble-updates (Reason: superseded by release)

Superseded in noble-release on 2024-03-29

Published in mantic-release on 2023-04-25

Published in lunar-release on 2022-10-27

Obsolete in kinetic-release on 2023-11-13

Published in jammy-release on 2022-02-25

Deleted in jammy-proposed (Reason: Moved to jammy)

vsftpd (3.0.5-0ubuntu1) jammy; urgency=medium

  * New upstream release: 3.0.5 (LP: #1960837, #1804430)
  * d/p: Refresh patches against new upstream release.

 -- Sergio Durigan Junior <email address hidden>  Wed, 23 Feb 2022 13:31:08 -0500

Available diffs

diff from 3.0.3-13build2 to 3.0.5-0ubuntu1 (9.3 KiB)

3.0.3-13build2

Superseded in jammy-release on 2022-02-25

Deleted in jammy-proposed on 2022-02-26 (Reason: Moved to jammy)

vsftpd (3.0.3-13build2) jammy; urgency=medium

  * No-change rebuild against openssl3

 -- Simon Chopin <email address hidden>  Wed, 24 Nov 2021 14:02:39 +0000

Available diffs

diff from 3.0.3-13build1 to 3.0.3-13build2 (324 bytes)

3.0.3-13build1

Superseded in jammy-release on 2021-12-06

Obsolete in impish-release on 2022-07-23

Deleted in impish-proposed (Reason: Moved to impish)

vsftpd (3.0.3-13build1) impish; urgency=medium

  * No-change rebuild to build packages with zstd compression.

 -- Matthias Klose <email address hidden>  Thu, 07 Oct 2021 12:26:13 +0200

Available diffs

diff from 3.0.3-13 (in Debian) to 3.0.3-13build1 (322 bytes)

3.0.3-13

Superseded in impish-release on 2021-10-08

Obsolete in hirsute-release on 2022-07-23

Deleted in hirsute-proposed on 2022-07-24 (Reason: moved to Release)

vsftpd (3.0.3-13) unstable; urgency=medium

  [Frey Daniel]
  * Fix FTBFS when configured with NO_PAM (Closes: #953085)

  [Svante Signell]
  * Add sysvinit-utils in Depends (Closes: #975585)

  [Sven Dreyer]
  * Fix a type in manpage (Closes: #970436)

 -- Keng-Yu Lin <email address hidden>  Thu, 04 Mar 2021 05:05:45 +0800

Available diffs

diff from 3.0.3-12 to 3.0.3-13 (1.3 KiB)

3.0.3-12

Superseded in hirsute-release on 2021-03-05

Obsolete in groovy-release on 2021-12-22

Published in focal-release on 2019-10-18

Obsolete in eoan-release on 2020-12-29

Obsolete in disco-release on 2020-07-14

Deleted in disco-proposed (Reason: moved to release)

vsftpd (3.0.3-12) unstable; urgency=low

  [Ryan Chu]
  * Fix faulty logic of greping PID in vsftpd.init (closes: #911396)

  [Keng-Yu Lin]
  * Bump Standards-Version to 4.3.0

 -- Keng-Yu Lin <email address hidden>  Wed, 06 Mar 2019 14:52:35 +0800

Available diffs

diff from 3.0.3-11 to 3.0.3-12 (615 bytes)

3.0.3-11

Superseded in disco-release on 2019-04-09

Obsolete in cosmic-release on 2020-07-13

Deleted in cosmic-proposed on 2020-07-13 (Reason: moved to release)

vsftpd (3.0.3-11) unstable; urgency=low

  [Michael Stone]
  * postinst: check if a file exists rather than a directory (Closes: #905242)

 -- Keng-Yu Lin <email address hidden>  Thu, 02 Aug 2018 12:01:54 +0800

Available diffs

diff from 3.0.3-10 to 3.0.3-11 (628 bytes)

3.0.3-10

Superseded in cosmic-release on 2018-08-02

Deleted in cosmic-proposed on 2018-08-03 (Reason: moved to release)

vsftpd (3.0.3-10) unstable; urgency=low

  * Add procps in Depends for the use in a clean chroot (Closes: #903974)
  * Removed Vcs-{Git, Browser}. Source can still be downloaded in the old way
   (Closes: #903716)
  * Fixed lintian warning in postinst
    - maintainer-script-should-not-use-recursive-chown-or-chmod
    - unnecessary-testsuite-autopkgtest-field
    - Removed dh-systemd and add debhelper (>= 9.20160709) in Build-Depends

 -- Keng-Yu Lin <email address hidden>  Sun, 29 Jul 2018 01:42:10 +0800

Available diffs

diff from 3.0.3-9build1 (in Ubuntu) to 3.0.3-10 (1.1 KiB)

3.0.3-9build1

Superseded in cosmic-release on 2018-07-30

Published in bionic-release on 2018-02-08

Deleted in bionic-proposed (Reason: moved to release)

vsftpd (3.0.3-9build1) bionic; urgency=high

  * No change rebuild against openssl1.1.

 -- Dimitri John Ledkov <email address hidden>  Mon, 05 Feb 2018 16:55:32 +0000

Available diffs

diff from 3.0.3-9 (in Debian) to 3.0.3-9build1 (485 bytes)

3.0.3-9

Superseded in bionic-release on 2018-02-08

Obsolete in artful-release on 2020-07-10

Deleted in artful-proposed on 2020-07-10 (Reason: moved to release)

vsftpd (3.0.3-9) unstable; urgency=low

  [Helmut Grohne]
  * Fix FTCBFS: Let dh_auto_build pass cross compilers (Closes: #850471)

  [Keng-Yu Lin]
  * Add lsb-base (>= 3.0-6) to Depends to fix lintian error:
    - init.d-script-needs-depends-on-lsb-base

 -- Keng-Yu Lin <email address hidden>  Wed, 05 Jul 2017 13:55:35 +0800

Available diffs

diff from 3.0.3-8 to 3.0.3-9 (843 bytes)

3.0.3-8

Superseded in artful-release on 2017-07-06

Obsolete in zesty-release on 2018-06-22

Deleted in zesty-proposed on 2018-06-22 (Reason: moved to release)

vsftpd (3.0.3-8) unstable; urgency=low

  * Remove libeatmydata1 from Depends (Closes: #836904)

 -- Keng-Yu Lin <email address hidden>  Wed, 21 Sep 2016 16:38:42 +0800

Available diffs

diff from 3.0.3-7 to 3.0.3-8 (407 bytes)

3.0.3-7

Superseded in zesty-release on 2016-11-04

Obsolete in yakkety-release on 2018-01-23

Deleted in yakkety-proposed on 2018-01-23 (Reason: moved to release)

vsftpd (3.0.3-7) unstable; urgency=low

  [Chris Lamb]
  * debian/vsftpd.init:  initscript stop and restart actions should
    ensure the process has stopped before returning (Closes: #829247)

 -- Keng-Yu Lin <email address hidden>  Mon, 29 Aug 2016 14:05:05 +0800

Available diffs

diff from 3.0.3-6 to 3.0.3-7 (620 bytes)

3.0.3-6

Superseded in yakkety-release on 2016-08-31

Deleted in yakkety-proposed on 2016-09-01 (Reason: moved to release)

vsftpd (3.0.3-6) unstable; urgency=low

  * New maintainer (Closes: #824694)
  * Update the Debian Policy to 3.9.8
  * Add libeatmydata1 in package Depends
  * Fixed debian/watch

 -- Keng-Yu Lin <email address hidden>  Wed, 10 Aug 2016 20:36:28 +0800

Available diffs

diff from 3.0.3-5 to 3.0.3-6 (845 bytes)

3.0.3-5

Superseded in yakkety-release on 2016-08-25

Deleted in yakkety-proposed on 2016-08-26 (Reason: moved to release)

vsftpd (3.0.3-5) unstable; urgency=medium

  * QA upload.
  * Cherry-pick the Ubuntu fix for ipv6 (Closes: #819546)
    - thanks Louis Bouchard and Jeremy Bicha

 -- Gianfranco Costamagna <email address hidden>  Tue, 05 Jul 2016 08:55:01 +0200

Available diffs

diff from 3.0.3-4ubuntu1 (in Ubuntu) to 3.0.3-5 (5.9 KiB)

3.0.3-4ubuntu1

Superseded in yakkety-release on 2016-07-11

Deleted in yakkety-proposed on 2016-07-12 (Reason: moved to release)

vsftpd (3.0.3-4ubuntu1) yakkety; urgency=low

  * Merge from Debian unstable (LP: #1586312).  Remaining changes:
    - Revert debian/patches/0013-listen.patch: In vsftpd.conf, set
      listen_ipv6=NO. This fix introduces a regression, FTBS and goes against the
      debian policy.
    - debian/control, debian/rules:
      + Add Apport hook.

Available diffs

diff from 3.0.3-3ubuntu2 to 3.0.3-4ubuntu1 (849 bytes)

3.0.3-3ubuntu2

Superseded in yakkety-release on 2016-06-03

Published in xenial-release on 2016-04-13

Deleted in xenial-proposed (Reason: moved to release)

vsftpd (3.0.3-3ubuntu2) xenial; urgency=medium

  * Revert debian/patches/0013-listen.patch: In vsftpd.conf, set
    listen_ipv6=NO. This fix introduces a regression, FTBS and goes against the
    debian policy.

 -- Louis Bouchard <email address hidden>  Wed, 13 Apr 2016 09:29:50 +0100

Available diffs

diff from 3.0.3-2ubuntu1 to 3.0.3-3ubuntu2 (2.2 KiB)
diff from 3.0.3-3ubuntu1 to 3.0.3-3ubuntu2 (707 bytes)

3.0.3-3ubuntu1

Superseded in xenial-proposed on 2016-04-13

vsftpd (3.0.3-3ubuntu1) xenial; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - debian/control, debian/rules:
      + Add Apport hook.

Available diffs

diff from 3.0.3-2ubuntu1 to 3.0.3-3ubuntu1 (2.3 KiB)

3.0.3-2ubuntu1

Superseded in xenial-release on 2016-04-13

Deleted in xenial-proposed on 2016-04-14 (Reason: moved to release)

vsftpd (3.0.3-2ubuntu1) xenial; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - debian/control, debian/rules:
      + Add Apport hook.

 -- Chris J Arges <email address hidden>  Thu, 14 Jan 2016 14:42:46 -0600

Available diffs

diff from 3.0.3-1ubuntu1 to 3.0.3-2ubuntu1 (4.4 KiB)

3.0.3-1ubuntu1

Superseded in xenial-release on 2016-01-14

Deleted in xenial-proposed on 2016-01-16 (Reason: moved to release)

vsftpd (3.0.3-1ubuntu1) xenial; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - debian/control, debian/rules:
      + Add Apport hook.

Available diffs

diff from 3.0.2-20ubuntu1 to 3.0.3-1ubuntu1 (4.8 KiB)

3.0.2-20ubuntu1

Superseded in xenial-release on 2015-10-29

Obsolete in wily-release on 2018-01-22

Deleted in wily-proposed on 2018-01-22 (Reason: moved to release)

vsftpd (3.0.2-20ubuntu1) wily; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - debian/control, debian/rules:
      + Add Apport hook.

Available diffs

diff from 3.0.2-18ubuntu1 to 3.0.2-20ubuntu1 (3.8 KiB)

3.0.2-18ubuntu1

Superseded in wily-release on 2015-08-06

Obsolete in vivid-release on 2018-01-18

Deleted in vivid-proposed on 2018-01-19 (Reason: moved to release)

vsftpd (3.0.2-18ubuntu1) vivid; urgency=low

  * Merge from Debian unstable. (LP: #1427884) Remaining changes:
    - debian/control, debian/rules:
      + Add Apport hook.
    - debian/vsftpd.init, debian/vsftpd.upstart:
      + Migrate to upstart.
  * Drop following changes, fixed in Debian:
    - ubuntu-disable-anonymous.patch -> 0040-disable-anonymous.patch
    - ubuntu-seccomp-gettimeofday.patch -> 0045-seccomp-gettimeofday.patch
    - debian/tests/*, debian/control: Add dep8 test.
    - debian/watch: It doesn't work anymore.
    - debian/vsftpd.apport: Add Apport hook.

Available diffs

diff from 3.0.2-14ubuntu1 to 3.0.2-18ubuntu1 (11.4 KiB)

3.0.2-1ubuntu2.14.04.1

Published in trusty-updates on 2014-05-05

Deleted in trusty-proposed (Reason: moved to -updates)

vsftpd (3.0.2-1ubuntu2.14.04.1) trusty; urgency=medium

  * d/p/ubuntu-seccomp-gettimeofday.patch: permit gettimeofday() for logging
    calls (LP: #1219857).
  * Add dep8 smoke test.
 -- Robie Basak <email address hidden>   Tue, 29 Apr 2014 15:33:07 +0000

Available diffs

diff from 3.0.2-1ubuntu2 to 3.0.2-1ubuntu2.14.04.1 (1.7 KiB)

3.0.2-14ubuntu1

Superseded in vivid-release on 2015-03-05

Obsolete in utopic-release on 2016-11-03

Deleted in utopic-proposed on 2016-11-03 (Reason: moved to release)

vsftpd (3.0.2-14ubuntu1) utopic; urgency=medium

  * Merge from Debian testing. Remaining changes:
    - d/vsftpd.upstart: migrate vsftpd to upstart.
      + d/vsftpd.init: remove.
    - d/{control,rules,vsftpd.apport}: add apport hook.
    - Add debian/watch file.
    - d/p/ubuntu-disable-anonymous.patch: disable anonymous login by default.
  * Drop changes (adopted in Debian):
    - d/p/12-ubuntu-use-snakeoil-ssl.patch
    - d/p/13-disable-clone-newpid.patch
  * d/p/ubuntu-seccomp-gettimeofday.patch: permit gettimeofday() for logging calls
    (LP: #1219857).
  * Add dep8 test.
 -- Robie Basak <email address hidden>   Tue, 29 Apr 2014 14:03:51 +0000

Available diffs

diff from 3.0.2-1ubuntu2 to 3.0.2-14ubuntu1 (17.8 KiB)

3.0.2-1ubuntu1.1

Obsolete in raring-updates on 2015-04-24

Deleted in raring-proposed on 2015-04-27 (Reason: moved to -updates)

vsftpd (3.0.2-1ubuntu1.1) raring; urgency=low

  * debian/patches/13-disable-clone-newpid.patch
    - patch to remove CLONE_NEWPID syscall
      see: https://bugzilla.novell.com/show_bug.cgi?id=786024#c38
      Fixes LP: #1160372
 -- Daniel Llewellyn (Bang Communications) <email address hidden>   Wed, 08 May 2013 14:08:53 +0100

Available diffs

diff from 3.0.2-1ubuntu1 to 3.0.2-1ubuntu1.1 (1.0 KiB)

3.0.2-1ubuntu2

Superseded in utopic-release on 2014-04-30

Published in trusty-release on 2013-10-18

Obsolete in saucy-release on 2015-04-24

Deleted in saucy-proposed (Reason: moved to release)

vsftpd (3.0.2-1ubuntu2) saucy; urgency=low

  * debian/patches/13-disable-clone-newpid.patch
    - patch to remove CLONE_NEWPID syscall
      see: https://bugzilla.novell.com/show_bug.cgi?id=786024#c38
      Fixes LP: #1160372
 -- Daniel Llewellyn (Bang Communications) <email address hidden>   Wed, 08 May 2013 14:08:53 +0100

Available diffs

diff from 3.0.2-1ubuntu1 to 3.0.2-1ubuntu2 (1.0 KiB)

3.0.2-1ubuntu1

Superseded in saucy-release on 2013-05-16

Obsolete in raring-release on 2015-04-24

Deleted in raring-proposed on 2015-04-27 (Reason: moved to release)

vsftpd (3.0.2-1ubuntu1) raring; urgency=low

  * Merge from debian unstable (LP: #1092076), remaining changes:
    - Use snakeoil SSL certificates and key.
    - debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart.
    - Add apport hook:
      + debian/vsftpd.apport: Added.
      + debian/control: Build-depends on dh-apport.
      + debian/rules: Add --with apport.
    - Add debian/watch file.
    - debian/patches/09-disable-anonymous.patch: Disable anonymous login by
      default.

Available diffs

diff from 2.3.5-3ubuntu1 to 3.0.2-1ubuntu1 (23.7 KiB)

2.3.5-3ubuntu1

Superseded in raring-release on 2013-01-22

Obsolete in quantal-release on 2015-04-24

vsftpd (2.3.5-3ubuntu1) quantal; urgency=low

  * Merge from Debian testing (LP: #1003644).  Remaining changes:
    + debian/vsftpd.upstart: migrate vsftpd to upstart.
    + Add apport hook (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
    + Add debian/watch file.
    + debian/patches/09-disable-anonymous.patch: Disable anonymous login
      by default. (LP: #528860)
  * debian/patches/12-ubuntu-us-snakeoil-ssl.patch: Use snakeoil SSL
    certificates and key.

Available diffs

diff from 2.3.5-1ubuntu2 to 2.3.5-3ubuntu1 (3.0 KiB)

2.3.5-1ubuntu2

Superseded in quantal-release on 2012-05-23

Published in precise-release on 2012-03-30

vsftpd (2.3.5-1ubuntu2) precise; urgency=low

  * debian/rules: Fix hardening based on Debian changes from 2.3.5-2 and -3.
 -- Kees Cook <email address hidden>   Tue, 27 Mar 2012 16:05:54 -0700

Available diffs

diff from 2.3.5-1ubuntu1 to 2.3.5-1ubuntu2 (609 bytes)

2.3.5-1ubuntu1

Superseded in precise-release on 2012-03-30

vsftpd (2.3.5-1ubuntu1) precise; urgency=low

  [ Ubuntu Merge-o-Matic ]
  * Merge from Debian testing.  Remaining changes:
    + Use snakeoil SSL certificates and key.
    + debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart.
    + Add apport hook (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
    + debian/vsftpd.postinst: Check that group exists first,
      then the user, then trying adding the user to the group. (LP: #629234)
    + Add debian/watch file.
    + debian/patches/09-disable-anonymous.patch: Disable anonymous login by default.
      (LP: #528860)

Available diffs

diff from 2.3.4-1ubuntu2 to 2.3.5-1ubuntu1 (6.2 KiB)

2.3.4-1ubuntu2

Superseded in precise-release on 2012-01-23

vsftpd (2.3.4-1ubuntu2) precise; urgency=low

  * debian/vsftpd.upstart: Fix transition from runlevel 1 -> 2.
    (LP: #820700)
 -- Chuck Short <email address hidden>   Mon, 02 Jan 2012 09:40:36 -0500

Available diffs

diff from 2.3.4-1ubuntu1 to 2.3.4-1ubuntu2 (515 bytes)

2.3.2-3ubuntu5.1

Obsolete in oneiric-updates on 2015-04-24

Obsolete in oneiric-security on 2015-04-24

vsftpd (2.3.2-3ubuntu5.1) oneiric-security; urgency=low

  * SECURITY UPDATE: remote DoS via network namespaces
    - debian/patches/12-CVE-2011-2189.patch: only use network namespaces
      on 2.6.36 and higher kernels
    - patch based on Debian's patch
    - CVE-2011-2189
 -- Jamie Strandboge <email address hidden>   Thu, 01 Dec 2011 14:09:39 -0600

Available diffs

diff from 2.3.2-3ubuntu5 (in Ubuntu) to 2.3.2-3ubuntu5.1 (1.3 KiB)

2.3.2-3ubuntu4.1

Obsolete in natty-updates on 2013-06-04

Obsolete in natty-security on 2013-06-04

vsftpd (2.3.2-3ubuntu4.1) natty-security; urgency=low

  * SECURITY UPDATE: remote DoS via network namespaces
    - debian/patches/12-CVE-2011-2189.patch: only use network namespaces
      on 2.6.36 and higher kernels
    - patch based on Debian's patch
    - CVE-2011-2189
 -- Jamie Strandboge <email address hidden>   Thu, 01 Dec 2011 14:08:14 -0600

Available diffs

diff from 2.3.2-3ubuntu4 (in Ubuntu) to 2.3.2-3ubuntu4.1 (1.3 KiB)

2.3.0~pre2-4ubuntu2.3

Obsolete in maverick-updates on 2013-03-05

Obsolete in maverick-security on 2013-03-05

vsftpd (2.3.0~pre2-4ubuntu2.3) maverick-security; urgency=low

  * SECURITY UPDATE: remote DoS via network namespaces
    - debian/patches/12-CVE-2011-2189.patch: only use network namespaces
      on 2.6.36 and higher kernels
    - patch based on Debian's patch
    - CVE-2011-2189
 -- Jamie Strandboge <email address hidden>   Thu, 01 Dec 2011 14:06:25 -0600

Available diffs

diff from 2.3.0~pre2-4ubuntu2.2 to 2.3.0~pre2-4ubuntu2.3 (1.3 KiB)

2.2.2-3ubuntu6.3

Obsolete in lucid-updates on 2016-10-26

Obsolete in lucid-security on 2016-10-26

vsftpd (2.2.2-3ubuntu6.3) lucid-security; urgency=low

  * SECURITY UPDATE: remote DoS via network namespaces
    - debian/patches/12-CVE-2011-2189.patch: only use network namespaces
      on 2.6.36 and higher kernels
    - patch based on Debian's patch
    - CVE-2011-2189
 -- Jamie Strandboge <email address hidden>   Thu, 01 Dec 2011 13:59:04 -0600

Available diffs

diff from 2.2.2-3ubuntu6.1 to 2.2.2-3ubuntu6.3 (2.1 KiB)

2.3.4-1ubuntu1

Superseded in precise-release on 2012-01-02

vsftpd (2.3.4-1ubuntu1) precise; urgency=low

  * Merge from debian unstable.  Remaining changes:
    + Use snakeoil SSL certificates and key.
    + debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart.
    + Add apport hook (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
    + debian/vsftpd.postinst: Check that group exists first,
      then the user, then trying adding the user to the group. (LP: #629234)
    + Add debian/watch file.
    + debian/patches/09-disable-anonymous.patch: Disable anonymous login by default.
      (LP: #528860)
    + Dropped:
      - debian/patches/11-CVE-2011-0762.patch: No longer needed.
 -- Chuck Short <email address hidden>   Tue, 06 Sep 2011 00:04:36 +0000

Available diffs

diff from 2.3.2-3ubuntu5 to 2.3.4-1ubuntu1 (17.8 KiB)

2.3.2-3ubuntu5

Superseded in precise-release on 2011-11-07

Obsolete in oneiric-release on 2015-04-24

vsftpd (2.3.2-3ubuntu5) oneiric; urgency=low

  * Rebuild for OpenSSL 1.0.0.
 -- Colin Watson <email address hidden>   Wed, 25 May 2011 22:42:28 +0100

Available diffs

diff from 2.3.2-3ubuntu4 to 2.3.2-3ubuntu5 (327 bytes)

2.2.2-3ubuntu6.2

Superseded in lucid-updates on 2011-12-07

Deleted in lucid-proposed on 2011-12-08 (Reason: moved to -updates)

vsftpd (2.2.2-3ubuntu6.2) lucid-proposed; urgency=low

  * debian/vsftpd.upstart:
    - Fix typo. Thanks to Jürgen Kreileder (LP: #577165)
    - Fix start of vsftpd even if not in standalone mode. Thanks to
      Stephane Chazelas (LP: #648202)

  [ Dustin Kirkland, Serge Hallyn ]
  * debian/vsftpd.postinst: Check that the group exists first, then the user,
    then try adding the user to the group. (LP: #629234, LP: #677764)
 -- Andres Rodriguez <email address hidden>   Wed, 13 Apr 2011 18:34:25 -0400

Available diffs

diff from 2.2.2-3ubuntu7.1 to 2.2.2-3ubuntu6.2 (2.7 KiB)

2.3.2-3ubuntu4

Superseded in oneiric-release on 2011-05-25

Obsolete in natty-release on 2013-06-04

vsftpd (2.3.2-3ubuntu4) natty; urgency=low

  * SECURITY UPDATE: denial of service via crafted glob expressions
    - debian/patches/11-CVE-2011-0762.patch: limit number of iterations in
      access.c, defs.h, ls.*.
    - CVE-2011-0762
 -- Marc Deslauriers <email address hidden>   Fri, 25 Mar 2011 14:29:29 -0400

Available diffs

diff from 2.3.2-3ubuntu3 to 2.3.2-3ubuntu4 (1.8 KiB)

2.3.0~pre2-4ubuntu2.2

Superseded in maverick-updates on 2011-12-07

Superseded in maverick-security on 2011-12-07

vsftpd (2.3.0~pre2-4ubuntu2.2) maverick-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted glob expressions
    - debian/patches/11-CVE-2011-0762.patch: limit number of iterations in
      access.c, defs.h, ls.*.
    - CVE-2011-0762
 -- Marc Deslauriers <email address hidden>   Fri, 25 Mar 2011 14:35:01 -0400

Available diffs

diff from 2.3.0~pre2-4ubuntu2 (in Ubuntu) to 2.3.0~pre2-4ubuntu2.2 (2.5 KiB)

2.2.2-3ubuntu6.1

Superseded in lucid-updates on 2011-04-26

Superseded in lucid-security on 2011-12-07

vsftpd (2.2.2-3ubuntu6.1) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted glob expressions
    - debian/patches/11-CVE-2011-0762.patch: limit number of iterations in
      access.c, defs.h, ls.*.
    - CVE-2011-0762
 -- Marc Deslauriers <email address hidden>   Fri, 25 Mar 2011 14:36:33 -0400

Available diffs

diff from 2.2.2-3ubuntu6 (in Ubuntu) to 2.2.2-3ubuntu6.1 (2.0 KiB)

2.2.0-1ubuntu2.1

Obsolete in karmic-updates on 2013-03-04

Obsolete in karmic-security on 2013-03-04

vsftpd (2.2.0-1ubuntu2.1) karmic-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted glob expressions
    - debian/patches/11-CVE-2011-0762.patch: limit number of iterations in
      access.c, defs.h, ls.*.
    - CVE-2011-0762
 -- Marc Deslauriers <email address hidden>   Fri, 25 Mar 2011 14:52:24 -0400

Available diffs

diff from 2.2.0-1ubuntu1 (in Ubuntu) to 2.2.0-1ubuntu2.1 (2.3 KiB)

2.0.6-1ubuntu1.2

Obsolete in hardy-updates on 2015-04-24

Obsolete in hardy-security on 2015-04-24

vsftpd (2.0.6-1ubuntu1.2) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted glob expressions
    - debian/patches/11-CVE-2011-0762.patch: limit number of iterations in
      access.c, defs.h, ls.*.
    - CVE-2011-0762
 -- Marc Deslauriers <email address hidden>   Fri, 25 Mar 2011 14:54:08 -0400

Available diffs

diff from 2.0.6-1ubuntu1 (in Ubuntu) to 2.0.6-1ubuntu1.2 (2.4 KiB)

2.0.4-0ubuntu4.1

Obsolete in dapper-updates on 2011-09-06

Obsolete in dapper-security on 2011-09-06

vsftpd (2.0.4-0ubuntu4.1) dapper-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted glob expressions
    - access.c, defs.h, ls.*: limit number of iterations.
    - changes extracted from 2.3.3 and 2.3.4 releases.
    - CVE-2011-0762
 -- Marc Deslauriers <email address hidden>   Fri, 25 Mar 2011 14:55:46 -0400

Available diffs

diff from 2.0.4-0ubuntu4 (in Ubuntu) to 2.0.4-0ubuntu4.1 (1.6 KiB)

2.3.0~pre2-4ubuntu2.1

Superseded in maverick-updates on 2011-03-29

Deleted in maverick-proposed on 2011-03-30 (Reason: moved to -updates)

vsftpd (2.3.0~pre2-4ubuntu2.1) maverick-proposed; urgency=low

  [ Andres Rodriguez ]
  * debian/vsftpd.upstart: Fix start of vsftpd even if not in standalone mode.
    Thanks to Stephane Chazelas (LP: #648202)

  [ Serge Hallyn ]
  * debian/vsftpd.postinst: Use complete name match when checking for existing
    ftp user/group, to avoid install failure. (LP: #677764)
 -- Andres Rodriguez <email address hidden>   Wed, 02 Mar 2011 12:11:46 +0100

Available diffs

diff from 2.3.0~pre2-4ubuntu2 to 2.3.0~pre2-4ubuntu2.1 (973 bytes)

2.3.2-3ubuntu3

Superseded in natty-release on 2011-03-31

vsftpd (2.3.2-3ubuntu3) natty; urgency=low

  * debian/vsftpd.upstart: Fix start of vsftpd even if not in standalone mode.
    Thanks to Stephane Chazelas (LP: #648202)
 -- Andres Rodriguez <email address hidden>   Fri, 25 Feb 2011 15:16:09 -0500

Available diffs

diff from 2.3.2-3ubuntu2 to 2.3.2-3ubuntu3 (670 bytes)

2.3.2-3ubuntu2

Superseded in natty-release on 2011-02-28

vsftpd (2.3.2-3ubuntu2) natty; urgency=low

  * debian/vsftpd.postinst: Use complete name match when checking for existing
    ftp user/group, to avoid install failure (LP: #656415)
 -- Thierry Carrez (ttx) <email address hidden>   Wed, 01 Dec 2010 13:46:44 +0100

Available diffs

diff from 2.3.2-3ubuntu1 to 2.3.2-3ubuntu2 (589 bytes)

2.3.2-3ubuntu1

Superseded in natty-release on 2010-12-01

vsftpd (2.3.2-3ubuntu1) natty; urgency=low

  * Merge from debian unstable.  Remaining changes:
    - Use snakeoil SSL certificates and key.
    - debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart.
    - Add apport hook (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
    - debian/vsftpd.postinst: Check that group exists first,
      then the user, then trying adding the user to the group. (LP: #629234)
    - Add debian/watch file.
    - debian/patches/09-disable-anonymous.patch: Disable anonymous login by default.
      (LP: #528860)

Available diffs

diff from 2.3.0-1ubuntu1 to 2.3.2-3ubuntu1 (6.8 KiB)

2.3.0-1ubuntu1

Superseded in natty-release on 2010-11-17

vsftpd (2.3.0-1ubuntu1) natty; urgency=low

  * Merge from debian unstable.  Remaining changes:
    - Use snakeoil SSL certificates and key.
    - debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart.
    - Add apport hook (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
    - debian/vsftpd.postinst: Check that group exists first,
      then the user, then trying adding the user to the group. (LP: #629234)
    - Add debian/watch file.
    - debian/patches/09-disable-anonymous.patch: Disable anonymous login by default.
      (LP: #528860)

Available diffs

diff from 2.3.0~pre2-4ubuntu2 to 2.3.0-1ubuntu1 (1.7 KiB)

2.2.2-3ubuntu7.1

Deleted in lucid-proposed on 2011-01-07 (Reason: failed SRU)

vsftpd (2.2.2-3ubuntu7.1) lucid-proposed; urgency=low

  * debian/vsftpd.postinst: Check that the group exists first, then
    the user, then try adding the user to the group, LP: #629234
 -- Dustin Kirkland <email address hidden>   Fri, 03 Sep 2010 08:24:33 -0600

Available diffs

diff from 2.2.2-3ubuntu6 to 2.2.2-3ubuntu7.1 (630 bytes)

2.3.0~pre2-4ubuntu2

Superseded in natty-release on 2010-10-21

Obsolete in maverick-release on 2013-03-05

vsftpd (2.3.0~pre2-4ubuntu2) maverick; urgency=low

  * debian/vsftpd.postinst: Check that the group exists first, then
    the user, then try adding the user to the group, LP: #629234
 -- Dustin Kirkland <email address hidden>   Fri, 03 Sep 2010 08:32:27 -0600

Available diffs

diff from 2.3.0~pre2-4ubuntu1 to 2.3.0~pre2-4ubuntu2 (625 bytes)

2.3.0~pre2-4ubuntu1

Superseded in maverick-release on 2010-09-03

vsftpd (2.3.0~pre2-4ubuntu1) maverick; urgency=low

  * Merge from debian unstable:
    - Use snakeoil SSL certificates and key.
    - debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart
    - Add apport hook: (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
 -- Chuck Short <email address hidden>   Mon, 12 Jul 2010 08:57:17 -0400

Available diffs

diff from 2.3.0~pre2-3ubuntu1 to 2.3.0~pre2-4ubuntu1 (1.6 KiB)

2.3.0~pre2-3ubuntu1

Superseded in maverick-release on 2010-07-12

vsftpd (2.3.0~pre2-3ubuntu1) maverick; urgency=low

  * Merge from debian unstable:
    - Use snakeoil SSL certificates and key.
    - debian/rules, debian/vsftpd.upstart: migrate vsftpd to upstart
    - Add apport hook: (LP: #513978):
      - debian/vsftpd.apport: Added.
      - debian/control: Build-depends on dh-apport.
      - debian/rules: Add --with apport.
    - Dropped:
      + debian/patches/07_vsftpd-enable-utf8.patch: Add support for UTF8:
        Use the debian version instead.
    - Add debian/watch file
 -- Chuck Short <email address hidden>   Mon, 21 Jun 2010 14:07:17 -0400

Available diffs

diff from 2.2.2-3ubuntu7 to 2.3.0~pre2-3ubuntu1 (9.6 KiB)

2.2.2-3ubuntu7

Superseded in maverick-release on 2010-06-21

vsftpd (2.2.2-3ubuntu7) maverick; urgency=low

  * debian/vsftpd.upstart: Fix typo. Thanks Jürgen Kreileder.
    (LP: #577165)
 -- Angel Abad <email address hidden>   Thu, 13 May 2010 20:48:52 +0200

Available diffs

diff from 2.2.2-3ubuntu6 to 2.2.2-3ubuntu7 (467 bytes)

2.2.2-3ubuntu6

Superseded in maverick-release on 2010-05-21

Obsolete in lucid-release on 2016-10-26

vsftpd (2.2.2-3ubuntu6) lucid; urgency=low

  * debian/vsftpd.upstart: Update upstart job. (LP: #563973)
 -- Chuck Short <email address hidden>   Thu, 15 Apr 2010 13:28:58 -0400

Available diffs

diff from 2.2.2-3ubuntu5 to 2.2.2-3ubuntu6 (454 bytes)

2.2.0-1ubuntu2

Superseded in karmic-updates on 2011-03-29

Deleted in karmic-proposed on 2011-03-30 (Reason: moved to -updates)

vsftpd (2.2.0-1ubuntu2) karmic-proposed; urgency=low

  * Fixing segfault if "pasv_address" config is being used. (LP: #462749)
    - Adding debian/patches/08_fix-pasv-segfault.patch
 -- Andreas Olsson <email address hidden>   Wed, 10 Mar 2010 20:48:39 +0100

Available diffs

diff from 2.2.0-1ubuntu1 to 2.2.0-1ubuntu2 (663 bytes)

2.2.2-3ubuntu5

Superseded in lucid-release on 2010-04-15

vsftpd (2.2.2-3ubuntu5) lucid; urgency=low

  [Chuck Short]
  * debian/vsftpd.postinst: Add a group from the username selected by the user. (LP: #530832)
  * debian/patches/09-disable-anonymous.patch: Disable anonymous login by default. (LP: #528860)

  [Andres Rodriguez]
  * Add apport hook (LP: #531978):
    - debian/vsftpd.apport: Added.
    - debian/control: Build-depends on dh-apport.
    - debian/rules: Add --with apport.
 -- Chuck Short <email address hidden>   Mon, 15 Mar 2010 15:16:32 -0400

Available diffs

diff from 2.2.2-3ubuntu4 to 2.2.2-3ubuntu5 (1.3 KiB)

2.2.2-3ubuntu4

Superseded in lucid-release on 2010-03-19

vsftpd (2.2.2-3ubuntu4) lucid; urgency=low

  * debian/vsftpd.upstart: Fix up upstart script. Thanks to Paul Elliott.
    (LP: #511057)
 -- Chuck Short <email address hidden>   Fri, 22 Jan 2010 13:13:02 -0500

Available diffs

diff from 2.2.2-3ubuntu2 to 2.2.2-3ubuntu4 (782 bytes)

2.2.2-3ubuntu2

Superseded in lucid-release on 2010-01-22

vsftpd (2.2.2-3ubuntu2) lucid; urgency=low

  * debian/rules, debian/vsftpd.upstart: migrate to vsftpd to upstart.
 -- Chuck Short <email address hidden>   Sun, 17 Jan 2010 14:18:56 -0500

Available diffs

diff from 2.2.2-3ubuntu1 to 2.2.2-3ubuntu2 (1.4 KiB)

2.2.2-3ubuntu1

Superseded in lucid-release on 2010-01-17

vsftpd (2.2.2-3ubuntu1) lucid; urgency=low

  * Merged from debian testing::
    - Use LSB functions in the init script.
    - Use snakeoil SSL certificates and key.
    - Add update-inetd dependency.
    - debian/patches/07_vsftpd-enable-utf8.patch: Add support for UTF8.
      (LP: #364958)
 -- Chuck Short <email address hidden>   Tue, 05 Jan 2010 10:01:25 -0500

Available diffs

diff from 2.2.0-4ubuntu1 to 2.2.2-3ubuntu1 (16.9 KiB)

2.2.0-4ubuntu1

Superseded in lucid-release on 2010-01-05

vsftpd (2.2.0-4ubuntu1) lucid; urgency=low

  * Merge from debian unstable, remaining changes:
    - Use LSB functions in the init script.
    - Use snakeoil SSL certificates and key.
    - Add update-inetd dependency.
    - debian/patches/07_vsftpd-enable-utf8.patch: Add support for UTF8.
      (LP: #364958)

Available diffs

diff from 2.2.0-1ubuntu1 to 2.2.0-4ubuntu1 (8.4 KiB)

2.2.0-1ubuntu1

Superseded in lucid-release on 2009-11-03

Obsolete in karmic-release on 2013-03-04

vsftpd (2.2.0-1ubuntu1) karmic; urgency=low

  * Merge from debian unstable, remaining changes:
    - Use LSB functions in the init script.
    - Use snakeoil SSL certificates and key.
    - Do not create rc.d stop symlinks.
    - Add update-inetd dependency.
    - debian/patches/07_vsftpd-enable-utf8.patch: Add support for UTF8.
     (LP: #364958)

Available diffs

diff from 2.2.0~pre4-2ubuntu2 to 2.2.0-1ubuntu1 (4.9 KiB)

2.2.0~pre4-2ubuntu2

Superseded in karmic-release on 2009-08-24

vsftpd (2.2.0~pre4-2ubuntu2) karmic; urgency=low

  * debian/patches/07_vsftpd-enable-utf8.patch: Add support for UTF8
    (LP: #364958).

 -- Chuck Short <email address hidden>   Tue, 11 Aug 2009 09:40:01 -0400

Available diffs

diff from 2.2.0~pre4-2ubuntu1 to 2.2.0~pre4-2ubuntu2 (1.0 KiB)

2.2.0~pre4-2ubuntu1

Superseded in karmic-release on 2009-08-11

vsftpd (2.2.0~pre4-2ubuntu1) karmic; urgency=low

  * Merge from debian unstable, remaining changes:
    - Use LSB functions in the init script.
    - Use snakeoil SSL certificates and key.
    - Do not create rc.d stop symlinks
    - Add update-inetd dependency.

Available diffs

diff from 2.1.2-1ubuntu1 to 2.2.0~pre4-2ubuntu1 (18.1 KiB)

2.1.2-1ubuntu1

Superseded in karmic-release on 2009-08-10

vsftpd (2.1.2-1ubuntu1) karmic; urgency=low

  * Merge from Debian unstable. Remaining changes:
     - Use LSB functions in the init script
     - Use snakeoil SSL certificate and key
     - Do not create rc.d stop symlinks
     - Add update-inetd dependency

Available diffs

diff from 2.1.1~pre1-2ubuntu1 to 2.1.2-1ubuntu1 (9.2 KiB)

2.1.1~pre1-2ubuntu1

Superseded in karmic-release on 2009-06-15

vsftpd (2.1.1~pre1-2ubuntu1) karmic; urgency=low

  * Merge from Debian unstable. Remaining changes:
     - Use LSB functions in the init script
     - Use snakeoil SSL certificate and key
     - Do not create rc.d stop symlinks
     - Add update-inetd dependency
  * Dropped postinst change removing rc.d stop symlinks, was only useful for
    edgy and hardy upgrades
  * This upload includes changes closing a few bugs:
     - New upstream release (LP: #333478)
     - Call adduser with --quiet in postinst (LP: #272084)
     - Extend username length limit (LP: #343738)

Available diffs

diff from 2.0.7-0ubuntu1 to 2.1.1~pre1-2ubuntu1 (57.2 KiB)

2.0.6-1ubuntu1.1

Superseded in hardy-updates on 2011-03-29

Deleted in hardy-proposed on 2011-03-30 (Reason: moved to -updates)

vsftpd (2.0.6-1ubuntu1.1) hardy-proposed; urgency=low

  * Added fix-ssl-shutdown.patch (LP: #254905):
     - Properly close SSL connections, fixing incompatibility with clients such
       as recent FileZilla
     - Bug fixed upstream in 2.0.7
     - Patch taken from Fedora, thanks!

 -- Adrien Cunin <email address hidden>   Sat, 27 Sep 2008 15:07:01 +0200

Available diffs

diff from 2.0.6-1ubuntu1 to 2.0.6-1ubuntu1.1 (692 bytes)

2.0.7-0ubuntu1

Superseded in karmic-release on 2009-05-10

Obsolete in jaunty-release on 2013-02-28

Obsolete in intrepid-release on 2013-02-20

vsftpd (2.0.7-0ubuntu1) intrepid; urgency=low

  * New upstream release
     - Fixes SSL shutdown bug (LP: #254905)

 -- Adrien Cunin <email address hidden>   Tue, 16 Sep 2008 19:20:32 +0200

Available diffs

diff from 2.0.6-1.1ubuntu2 to 2.0.7-0ubuntu1 (6.7 KiB)

2.0.6-1.1ubuntu2

Superseded in intrepid-release on 2008-09-22

vsftpd (2.0.6-1.1ubuntu2) intrepid; urgency=low

  * Removed update-rc.d "multiuser" option and updated init info (LP: #254273)
   http://lists.ubuntu.com/archives/ubuntu-devel-announce/2008-June/000430.html
  * Added Homepage field on debian/control
  * Upgrade standards to 3.8.0

 -- Nicolas Valcarcel <email address hidden>   Tue, 12 Aug 2008 20:23:05 -0500

Available diffs

diff from 2.0.6-1.1ubuntu1 to 2.0.6-1.1ubuntu2 (915 bytes)

2.0.6-1.1ubuntu1

Superseded in intrepid-release on 2008-09-09

vsftpd (2.0.6-1.1ubuntu1) intrepid; urgency=low

  * Merge from debian unstable, remaining changes:
    - lsb init script
    - use snakeoil ssl certs
    - add update-inetd dependency
    - Modify Maintainer value to match DebianMaintainerField spec.
  * Dropped:
    - remove stop links from rc0 and rc6: pre-hardy upgrades.

2.0.6-1ubuntu1

Superseded in intrepid-release on 2008-05-13

Obsolete in hardy-release on 2015-04-24

vsftpd (2.0.6-1ubuntu1) hardy; urgency=low

  * Merge from Debian unstable, remaining changes:
    - remove stop links from rc0 and rc6
    - lsb init script
    - use snakeoil ssl certs
    - add update-inetd dependency
  * debian/control:
    - Modify Maintainer value to match DebianMaintainerField spec.

2.0.5-2ubuntu2

Superseded in hardy-release on 2008-02-26

Obsolete in gutsy-release on 2011-09-16

Obsolete in feisty-release on 2009-08-20

vsftpd (2.0.5-2ubuntu2) feisty; urgency=low

  * debian/control: Add update-inetd dependency (Ubuntu netbase
    drops inetd dependency but update-inetd is needed in postinst,
    Closes Ubuntu: #75432).

 -- Lionel Porcheron <email address hidden>   Wed, 13 Dec 2006 11:02:41 +0100

2.0.5-2ubuntu1

Superseded in feisty-release on 2006-12-13

vsftpd (2.0.5-2ubuntu1) feisty; urgency=low

  * Merge from debian unstable, remaining changes:
    - remove stop links from rc0 and rc6
    - lsb init script
    - use snakeoil ssl certs

2.0.4-0ubuntu5

Superseded in feisty-release on 2006-11-28

Obsolete in edgy-release on 2008-06-19

vsftpd (2.0.4-0ubuntu5) edgy; urgency=low

  * Remove stop script symlinks from rc0 and rc6.

 -- Scott James Remnant <email address hidden>   Mon, 18 Sep 2006 16:34:57 +0100

Ubuntuvsftpd package

Change log for vsftpd package in Ubuntu

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs

Ubuntu
vsftpd package