In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from mod_sql.
1.3.6-6build21.3.6c-11.3.6c-21.3.6c-2ubuntu0.11.3.7b+dfsg-11.3.7c+dfsg-1build11.3.7c+dfsg-1ubuntu0.11.3.8.b+dfsg-1build31.3.8.b+dfsg-21.3.8.b+dfsg-2ubuntu11.3.8.b+dfsg-2ubuntu1.24.10.11.3.8+dfsg-81.3.8.a+dfsg-11.3.8.b+dfsg-11.3.8.b+dfsg-1build11.3.8.b+dfsg-1build21.3.8.b+dfsg-1build31.3.8.b+dfsg-1ubuntu0.11.3.8.b+dfsg-2ubuntu11.3.8.b+dfsg-2ubuntu21.3.8.c+dfsg-11.3.8.c+dfsg-2Exploitability
AV:NAC:LPR:NUI:NScope
S:UImpact
C:HI:NA:NCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N