Errata overview
Errata ID 332
Date 2019-11-13
Source package proftpd-dfsg
Fixed in version 1.3.5b-4+deb9u2
This update addresses the following issue:
* ProFTPD allows remote unauthenticated denial-of-service due to incorrect
  handling of overly long commands because main.c in a child process enters
  an infinite loop. (CVE-2019-18217)
Additional notes
CVE ID CVE-2019-18217
UCS Bug number #50464