Format: 1.8
Date: Thu, 13 Feb 2020 17:48:27 -0500
Source: rsync
Binary: rsync
Architecture: s390x
Version: 3.1.1-3ubuntu1.3
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-s390x-019.buildd>
Changed-By: Avital Ostromich <avital.ostromich@canonical.com>
Description:
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes:
 rsync (3.1.1-3ubuntu1.3) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: improper pointer arithmetic might allow
     context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9840.patch: remove offset pointer optimization
       in inftrees.c.
     - CVE-2016-9840
   * SECURITY UPDATE: improper pointer arithmetic might allow
     context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9841.patch: use post-increment only in inffast.c.
     - CVE-2016-9841
   * SECURITY UPDATE: vectors involving left shifts of negative integers might
     allow context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9842_1.patch: avoid shifts of negative values in
       inflateMark().
     - debian/patches/CVE-2016-9842_2.patch: avoid casting an out-of-range
       value to long.
     - CVE-2016-9842
   * SECURITY UPDATE: vectors involving big-endian CRC calculation might allow
     context-dependent attackers to have unspecified impact
     - debian/patches/CVE-2016-9843.patch: avoid pre-decrement of pointer in
       big-endian CRC calculation.
     - CVE-2016-9843
Checksums-Sha1:
 8802d81d885f5caba3bff4d013877e0d2a5a86d5 319946 rsync_3.1.1-3ubuntu1.3_s390x.deb
Checksums-Sha256:
 0c1d59b83ba453fd9bdba91297b0560c614724751c5492032b734fd23fc01c5c 319946 rsync_3.1.1-3ubuntu1.3_s390x.deb
Files:
 659178bd7cb39cf444afdf353453b614 319946 net optional rsync_3.1.1-3ubuntu1.3_s390x.deb
Original-Maintainer: Paul Slootman <paul@debian.org>