proftpd 1.3.6b fixes a pre-auth denial of service vulnerability, which is CVE-2019-18217.
I haven't found an existing bug for it. Update is already in the tree, but not stabilized yet. Can we stabilize?
Arches and Maintainer(s), Thank you for your work.
GLSA Vote: Yes
New GLSA Request filed.
This issue was resolved and addressed in
GLSA 202003-35 at https://security.gentoo.org/glsa/202003-35
by GLSA coordinator Thomas Deutschmann (whissi).