rsync 3.0.9-1ubuntu1.1 source package in Ubuntu


rsync (3.0.9-1ubuntu1.1) precise-security; urgency=medium

  * SECURITY UPDATE: rsync path spoofing attack
    - debian/patches/CVE-2014-9512-0.patch: reject invalid filenames in
      filelist in flist.c, rsync.h, util.c.
    - debian/patches/CVE-2014-9512-1.patch: complain if an inc-recursive
      path is not right for its dir in flist.c, io.c, main.c, rsync.c.
    - debian/patches/CVE-2014-9512-2.patch: add parent-dir validation for
      --no-inc-recurse too in flist.c, generator.c.
    - CVE-2014-9512

 -- Marc Deslauriers <email address hidden>  Wed, 20 Jan 2016 08:00:00 -0500

Upload details

Uploaded by:
Marc Deslauriers on 2016-01-20
Uploaded to:
Original maintainer:
Ubuntu Developers
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Precise updates on 2016-01-21 main net
Precise security on 2016-01-21 main net


File Size SHA-256 Checksum
rsync_3.0.9.orig.tar.gz 774.1 KiB 30f10f8dd5490d28240d4271bb652b1da7a60b22ed2b9ae28090668de9247c05
rsync_3.0.9-1ubuntu1.1.diff.gz 24.0 KiB a2198f20eac6ffbbe78d61d8f301e8c3b4010fb23b30f8521d9258f716666945
rsync_3.0.9-1ubuntu1.1.dsc 1.7 KiB 2e7ec0a580fb70bbdce2e6feb9284bcabe6c71afe8028e97f304887815d6abec

View changes file

Binary packages built by this source

rsync: fast, versatile, remote (and local) file-copying tool

 rsync is a fast and versatile file-copying tool which can copy locally
 and to/from a remote host. It offers many options to control its behaviour,
 and its remote-update protocol can minimize network traffic to make
 transferring updates between machines fast and efficient.
 It is widely used for backups and mirroring and as an improved copy
 command for everyday use.
 This package provides both the rsync command line tool and optional
 daemon functionality.