[rsync] possible execution of arbitrary code
Bug #173608 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
rsync (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: rsync
References:
[1] http://
[2] http://
Quoting CVE-2007-4091:
"Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the f_name function."
CVE References
To post a comment you must log in.
Oops. Sorry, this has already been fixed in USN-500-1.