Recommended update for vsftpd

Announcement ID: SUSE-RU-2018:2191-1
Rating: moderate
References:
Affected Products:
  • SUSE Linux Enterprise High Performance Computing 12 SP3
  • SUSE Linux Enterprise Server 12 SP3
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3

An update that has four fixes can now be installed.

Description:

This update for vsftpd fixes the following issues:

  • No longer start/stop parameterized systemd units, which led to a confusing "failed to try-restart" error. (bsc#1093179, bsc#1010177)
  • Disable the default setting for rsa_cert_file. The upstream configuration initializes that value to "/usr/share/ssl/certs/vsftpd.pem" and vsftpd won't start up if that file does not exist (or if it does not contain a RSA certificate). Therefore, users who copy a DSA certificate to that location or properly configure a DSA certificate via dsa_cert_file without explicitly disabling the RSA certificate won't be able to start vsftpd. (bsc#975538)
  • Mention the new 'address_space_limit' option in the installed vsftpd.conf manpage. (bsc#1075060)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • SUSE Linux Enterprise Server 12 SP3
    zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-1487=1
  • SUSE Linux Enterprise High Performance Computing 12 SP3
    zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-1487=1
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3
    zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-1487=1

Package List:

  • SUSE Linux Enterprise Server 12 SP3 (aarch64 ppc64le s390x x86_64)
    • vsftpd-3.0.2-40.8.1
    • vsftpd-debugsource-3.0.2-40.8.1
    • vsftpd-debuginfo-3.0.2-40.8.1
  • SUSE Linux Enterprise High Performance Computing 12 SP3 (aarch64 x86_64)
    • vsftpd-3.0.2-40.8.1
    • vsftpd-debugsource-3.0.2-40.8.1
    • vsftpd-debuginfo-3.0.2-40.8.1
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 (ppc64le x86_64)
    • vsftpd-3.0.2-40.8.1
    • vsftpd-debugsource-3.0.2-40.8.1
    • vsftpd-debuginfo-3.0.2-40.8.1

References: