Bug#946560: stretch-pu: package proftpd-dfsg/1.3.5b-4+deb9u3

["Adam D. Barratt" <adam@adam-barratt.org.uk>]

Control: tags -1 + confirmed

On Tue, 2019-12-10 at 23:51 +0100, Hilmar Preusse wrote:
> te attached debdiff fixes the issues
> 
> #946345 proftpd-dfsg: CVE-2019-19269
> 
> ...for Debian stretch. I built/installed the package an Debian
> oldstable and could login into the server and transfer file.

+proftpd-dfsg (1.3.5b-4+deb9u3) stretch-security; urgency=medium

The distribution for a stretch-pu upload should simply be "stretch".

+  *  Cherry pick patch from upstream:
+     - for upstream 861 (CVE-2019-19269) (Closes: #946345)
+     upstream_pull_861_CVE-2019-19269

I'm not sure whether that final line was intended to be included.

Please go ahead.

Regards,

Adam