proftpd-sqlite-1.3.6e-lp152.2.3.1 4>$  Ap_ /=„^`6Oyn)C%77v۵\N#SZQX[Tf!#=/~d7b x&8kw/o2)Ѯr"̎A]I!J#&sNʂH&`Y+gE rlxo='A2f@O9q%|6;tqJ z!]>p>*?*d $ >dhtx      U X\af   (89D:F'G'H'I'X'Y'\'](^(b(&c(d)`e)ef)hl)ju)|v)w*x*y*z*(*8*<*B*Cproftpd-sqlite1.3.6elp152.2.3.1SQLite Module for ProFTPDThis is the SQLite Module for ProFTPD_ Dcloud128\openSUSE Leap 15.2openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxx86_64\_ =f9aec72ff88600194c8c4b2911ee48164c7ec6e5f2cbdaa97c0b5cb4521ba3ddrootrootproftpd-1.3.6e-lp152.2.3.1.src.rpmproftpd-sqliteproftpd-sqlite(x86-64)@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.4)(64bit)libsqlite3.so.0()(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.6e3.0.4-14.6.0-14.0-15.2-14.14.1_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@UjDominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440cloud128 16072077481.3.6e-lp152.2.3.11.3.6e-lp152.2.3.1mod_sql_sqlite.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:15256/openSUSE_Leap_15.2_Update/af2ec4f943321959850cd992b8687cce-proftpd.openSUSE_Leap_15.2_Updatecpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3b73b53aeb9188f8883bb48641152eb82b7028b8, strippedRRRR PGX>Cutf-8b041534e55b7c9ca5776917299c43c2c5d62d8f86b8634056d110ac5b7eafa09? 7zXZ !t/],] crv9u\a]:!KHB aտE!3'W%mMw~O<.ҠR]2wV=XۗAk1A)ɾ9׹4إ*'\>ހȹ 2/ˁF'7⍮@&yz')pgSI/NvU) mWEh(~tbhZ [^ƙ<*$N#RRMYI%ʚ < Y#u3bi:V DĦ7@4紹ÐeU?* L,ru$r)wL-zx$-VY^+0v6\Ae:UXE-Yc"<"\r80J#pSC!(F_ "=#!.ʸYrV)GeXaW|3C8#ASob̽,amS9WŒ̦zqFS a|D-CXbDžls'؅꽊m^ YBo Y`҅ſ`tܬtx)_=)GSp^ҌG1[MjDK~uQn AzRܲ_ v8k齏n,fu4y!ATKU'``%MIL:@-\7/NȐ60qڣ(uQRT%OwdaZ92t ĕ%/~ >tOGcy-'n-n M -.Aȧ.!z<`~33s}o؋(_r֯ PN"{?M/(Qmg1Co_mxak.WJnJf`JYߚ8? ߦNEdC5ӶG8XҨtEQb 13 %`,cySU)e3*e<`&zofz Ri@c'Ai@d]='1(1'zDPDp:,Pt4@@)s^jEWsj1UF=9. h# gaxJ XCv^M.gӠH[oK=E*raΣ9)qK˓",33 JxɁ 9?\$E8~mH@~cq&vFz1"It'm0C*-}>m]>bH)/qOރ?ܘ]z:#d͆ }ŠPwA4_Ϝ9k)њU{^jf!3?!?N K[/ӷN8Y>sr :<]y-| cCj1nGE/gG輥lb |/ >eR[G[a4 u x4pulO{kJ\٠%ErTY}"kZ^66^Ƹp>_Wm \~tV"2ܲj{jwL"G FS3}i٩rulQR*3zPD@`4D\ЗlnzN,a7BDRdCxX..~z{x;%}޷ I/}M4 [S9JX9o3Ept}rvó9ȳ[E<ClǍ-rx[f蟿Kc0g )pAϑ۸CT+ Ss^q;P63ln26DaK3S(ܺU°W_t"@. *D~.^n."}sEE'#`:+#S]4]n#chj%!F!>Qر\D@t'#I[:n{,a `Ku1KoG{#SKdAm;yѕE$_ɖ߀򊮀aX5*7{MX_2Au_GnsJ&P!L ULřlZu\>2v0AMWzν5*SZ;V"nDߓ 0' 6f&N7 @lQT`2:,WXˉB~_ʵXWl n7?HHW[]_wHZP 3EIm;ΫMܼ9R=݉}'5{) fq̲iP=B{>v93! qۯ q{qƄpv-Tpȗ Taҗ|a_Q)_/ƚZi1J10-݀\`*M$ 7E ҁ[JwH7Ki%6!x# ZŠp PtrpD[ng+/.6v3/ǽjG.E&n!*$~Z΄w:W&J fQBcĝY>7 zoǒJdK$ڭvdfJl&a@1+­P*`4 {V/ `J xH(+ꀗv.:jt-+lU*1GMG-ꈗ}~$r;'RݮF+c?\/e%L0Rn2FrVe?z|dq{bm+WAiJnHs1gj$?58s!96Ic.gLe¯ʌ3HJ y㿟,Visz}#F>\ub.| dZ]{ F{A`Rꇡ#܄b^#x)4@.F?M2S|5܏Ml+T>V~a@NV2}4ΰ3O;ݗb^NPĕ;cRcׯEU2pa!c`,q:y;Mf)TYXT[}f^g"BN!^5Ҁ޴ΠY1*ıj  fi#old6xyCF7`O)a AneE;¿XH6חЮ-o F&@i5~N3*KO{hĦܬ5|ͯAɯu?K\ ,M2,iW,5 ;G y̼|gBsi 65$ Q#CZ;6eYr*W87Nd 59I1՝ze(R^df9`7iO^&>>YR 'R Ŀq+,F0Wpj N+筝&=*5JcH cD\HOkR_ݞZƮOr7OE1>Xҹ8| ᬎBhݷճ:&Z(>;齑elz- [ ֖MBs# JR玣$f y Q_&9S.[GV&5/¹!BN]Pk&~Prn9wYLM'_RzlG5 s;|I8$ .1ݻPM}~uɇ^dik7&`85>#9AB*+[a Ny[M 5ڀ˜2XEXJ4\ ƻ P9_$GT >$%+8E R.(.C%|d|[$ơzmxEdVn%v'0L(++UyoOӬT h=*@ S*sjmwPSM/*$ H>Es]la M\h_h: sMB ݘ} |:k1hv3{+ š~sEA^;8pVsUc /UT'Xal5ZmA /g/ԟ]WFkbo.<"!WB˄bPv^9%'7sM"٤ս |lcK|r cVkY{Xnk >c},OHK钺C?RcҲL+nµ~25vqav"kGS'Y]I 0_!Lg2[~ Y`QIs&,o")[u!:i҅o {dewԘ~E]Kwe߁+)̎+vZOX6.JߚOrp#b6=S H8F?Duo+< M&L1c=daaOXpEw2$oZq4 6kg>@>WoZI)1ŷz1N2y#Rdn\b? h3,laBt CV/4uY2Fc Pд*27 d-B9qA+Bg=`&\N%Qw0 zrJw{>sJ FBJgP^k)[ ȸnL΀PF jC&+Xc^E?k$w|GGH:Ǧwy#Јdve\- uܬO*ap)@*\E? h|7._6ت^aj04z zWG h2kԓ%MʹnYC#(.e;B4ۂ" yvDRJ1R(euuXgNXy)%xk2]Ǿߚ}v-KY¾iz<;jE:Y,y&oo<j*q<R^ˊ>ir  q^j(}47x&'S0H*R0 ljJ߾e>#gȮ<(xW9f\j؎oc#9?ZaP#.vT5cwW{X1c䭏VC UcA6c1/G^V284QHg07D.mM|x6݄*e_-L\)_ޯG֧w"R8 fSm%%5~eh :9!萍toq2՗EeE Hm`IvPPl ح,W_w]%ӄDY%Γ5nqX't$S6_dRfb(0ýb'w aUS"a `e#XA%oBK^mTv${(||2V80G V2à{orr(Տ$Z'T;౓Y\ afV~Q@K$zHR_EvD8Ebt;C̐|P#mJ =ZTHI_dej3d꾏DZcF@ֲEhוF>+*c\g[pNMTŖiowh~/*6.qAUv\sc4gk\c!Hd0T<p%cPn6F(h9n !9 OсNgָyvJ9Zc՟6o<#v=+I|AM9Q&o)VXǕm$(\!to@v\h?%Iy^zZлPD= YZ