Publishing details
-
Removed from disk
.
-
Removal requested
.
-
Superseded
by rsync - 3.1.1-3ubuntu1.2
-
Published
-
Copied from
ubuntu xenial in
Private PPA for Ubuntu Security Team
by Ubuntu Archive Robot
Changelog
rsync (3.1.1-3ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE: bypass intended access restrictions
- debian/patches/CVE-2017-17433.patch: check fname in
recv_files sooner in receiver.c.
- CVE-2017-17433
* SECURITY UPDATE: not check for fnamecmp filenames and
does not apply sanitize_paths
- debian/patches/CVE-2017-17434-part1.patch: check daemon
filter against fnamecmp in receiver.c.
- debian/patches/CVE-2017-17434-part2.patch: sanitize xname
in rsync.c.
- CVE-2017-17434
-- <email address hidden> (Leonidas S. Barbosa) Wed, 06 Dec 2017 11:07:22 -0300
Builds
Package files