An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) read has been detected in the pure_strcmp function in utils.c.
{
"unresolved_ranges": [
{
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "30"
},
{
"last_affected": "30"
},
{
"introduced": "31"
},
{
"last_affected": "31"
},
{
"introduced": "32"
},
{
"last_affected": "32"
}
],
"vendor_product": "fedoraproject:fedora",
"source": "CPE_STRING"
}
]
}[
{
"source": "https://github.com/jedisct1/pure-ftpd/commit/bf6fcd4935e95128cf22af5924cdc8fe5c0579da",
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"line_hashes": [
"95891114108689080271635707879851571584",
"336842005398644163625468051387470758073"
],
"threshold": 0.9
},
"deprecated": false,
"id": "CVE-2020-9365-7e5360e1",
"target": {
"file": "src/utils.c"
}
},
{
"source": "https://github.com/jedisct1/pure-ftpd/commit/36c6d268cb190282a2c17106acfd31863121b58e",
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"line_hashes": [
"95891114108689080271635707879851571584",
"336842005398644163625468051387470758073"
],
"threshold": 0.9
},
"deprecated": false,
"id": "CVE-2020-9365-85e7bab8",
"target": {
"file": "src/utils.c"
}
}
]
"2026-07-09T00:12:17Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-9365.json"