Format: 1.8
Date: Thu, 18 Jan 2018 17:00:13 -0300
Source: rsync
Binary: rsync
Architecture: i386
Version: 3.1.0-2ubuntu0.4
Distribution: trusty
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy01-amd64-006.buildd>
Changed-By: Leonidas S. Barbosa <leo.barbosa@canonical.com>
Description: 
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes: 
 rsync (3.1.0-2ubuntu0.4) trusty-security; urgency=medium
 .
   * SECURITY UPDATE: receive_xattr function does not check
     for '\0' character allowing denial of service attacks
     - debian/patches/CVE-2017-16548.patch: enforce trailing
       \0 when receiving xattr values in xattrs.c.
     - CVE-2017-16548
   * SECURITY UPDATE: Allows remote attacker to bypass argument
     - debian/patches/CVE-2018-5764.patch: Ignore --protect-args
       when already sent by client in options.c.
     - CVE-2018-5764
Checksums-Sha1: 
 2a1531a25fc52c4802b436aad6274568ecbd0c99 273614 rsync_3.1.0-2ubuntu0.4_i386.deb
Checksums-Sha256: 
 e653e9bace9a3d5c97999b1c336d757188ac9ac997c2e9a3a4397bc9ae6cbaa6 273614 rsync_3.1.0-2ubuntu0.4_i386.deb
Files: 
 596ad1e8411f41111d2ab375d358479d 273614 net optional rsync_3.1.0-2ubuntu0.4_i386.deb
Original-Maintainer: Paul Slootman <paul@debian.org>