CVE-2024-37897 #1664

thielj · 2024-06-19T21:44:04Z

thielj
Jun 19, 2024

Are there any details available?

thielj · 2024-06-25T22:53:25Z

thielj
Jun 25, 2024
Author

Looks like it has been published now

GHSA-hw5f-6wvv-xcrh

0 replies

drakkan · 2024-06-26T12:39:55Z

drakkan
Jun 26, 2024
Maintainer

Hello,

Please understand that publishing a CVE requires some technical time. Details were published the day after v2.6.1 was released.

In any case, people who care about SFTPGo and/or the security of SFTPGo and therefore of their production installations, can purchase a support contract, in this way they will ensure that the project stays alive and they will get security hardening, early security patches and many other features. More details. Thanks

1 reply

thielj Jun 26, 2024
Author

Apologies for reading the release notes. I'll try to avoid installing new bits until I can afford a support contract for my hobby server.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2024-37897 #1664

{{title}}

Replies: 2 comments 1 reply

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

Select a reply

CVE-2024-37897 #1664

thielj Jun 19, 2024

Replies: 2 comments · 1 reply

thielj Jun 25, 2024 Author

drakkan Jun 26, 2024 Maintainer

thielj Jun 26, 2024 Author

thielj
Jun 19, 2024

Replies: 2 comments 1 reply

thielj
Jun 25, 2024
Author

drakkan
Jun 26, 2024
Maintainer

thielj Jun 26, 2024
Author