Format: 1.8
Date: Thu, 13 Feb 2020 17:48:27 -0500
Source: rsync
Binary: rsync
Architecture: arm64
Version: 3.1.1-3ubuntu1.3
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-016.buildd>
Changed-By: Avital Ostromich <avital.ostromich@canonical.com>
Description:
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes:
 rsync (3.1.1-3ubuntu1.3) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: improper pointer arithmetic might allow
     context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9840.patch: remove offset pointer optimization
       in inftrees.c.
     - CVE-2016-9840
   * SECURITY UPDATE: improper pointer arithmetic might allow
     context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9841.patch: use post-increment only in inffast.c.
     - CVE-2016-9841
   * SECURITY UPDATE: vectors involving left shifts of negative integers might
     allow context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9842_1.patch: avoid shifts of negative values in
       inflateMark().
     - debian/patches/CVE-2016-9842_2.patch: avoid casting an out-of-range
       value to long.
     - CVE-2016-9842
   * SECURITY UPDATE: vectors involving big-endian CRC calculation might allow
     context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9843.patch: avoid pre-decrement of pointer in
       big-endian CRC calculation.
     - CVE-2016-9843
Checksums-Sha1:
 3613605d9116f5bd10c2c2bb946b5bed6bea3638 298984 rsync_3.1.1-3ubuntu1.3_arm64.deb
Checksums-Sha256:
 88c38dae8f2492627406bd38d4897bb060e1dac2a5a4f44e554c2285c73d05a9 298984 rsync_3.1.1-3ubuntu1.3_arm64.deb
Files:
 ee0e149ba7de5b01d83cdc57c0bb88d1 298984 net optional rsync_3.1.1-3ubuntu1.3_arm64.deb
Original-Maintainer: Paul Slootman <paul@debian.org>