rpm package
almalinux/vsftpd
pkg:rpm/almalinux/vsftpd
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-14242 | Med | 6.5 | < 3.0.5-6.el9_7.2 | 3.0.5-6.el9_7.2 | Jan 14, 2026 | A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafted STAT command with a specific byte sequence. |
- affected < 3.0.5-6.el9_7.2fixed 3.0.5-6.el9_7.2
A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafted STAT command with a specific byte sequence.