These are all security issues fixed in the pure-ftpd-1.0.43-1.3 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "pure-ftpd": "1.0.43-1.3" } ] }