[USN-6379-1] vsftpd vulnerability
Ubuntu Security Notice USN-6379-1
September 18, 2023
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 20.04 LTS
vsftpd could allow unintended access to network services.
- vsftpd: FTP server written for security
It was discovered that vsftpd was vulnerable to the ALPACA TLS protocol
content confusion attack. A remote attacker could possibly use this issue
to redirect traffic from one subdomain to another.
The problem can be corrected by updating your system to the following
Ubuntu 20.04 LTS:
This update uses a new upstream release, which includes additional bug
fixes. In general, a standard system update will make all the necessary
A vsftpd security update has been released for Ubuntu Linux 20.04 LTS.