621 matches found
DEBIAN-CVE-2008-1720
Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute xattr support enabled, might allow remote attackers to execute arbitrary code via unknown vectors...
DSA-1545-1 rsync
Bulletin has no description...
PT-2008-1008 · Rsync · Rsync
Name of the Vulnerable Software and Affected Versions: rsync versions 2.6.9 through 3.0.1 Description: The issue affects the rsync package, potentially leading to breaches of confidentiality, integrity, and availability of protected information. Exploitation can be carried out remotely. A buffer...
GLSA-200605-05 : rsync: Potential integer overflow
The remote host is affected by the vulnerability described in GLSA-200605-05 rsync: Potential integer overflow An integer overflow was found in the receivexattr function from the extended attributes patch xattr.c for rsync. The vulnerable function is only present when the 'acl' USE flag is set...
rsync: Potential integer overflow
Background rsync is a server and client utility that provides fast incremental file transfers. It is used to efficiently synchronize files between hosts and is used by emerge to fetch Gentoo's Portage tree. Description An integer overflow was found in the receivexattr function from the extended...
CVE-2006-2083
Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...
CVE-2006-2083
Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...
Integer overflow
Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...
DEBIAN-CVE-2006-2083
Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...
CVE-2006-2083
Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...
CVE-2006-2083
Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...
security flaw
xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...
CVE-2005-3712
Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes...
Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)
Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...
File::ExtAttr perl library buffer overflow
Off-by-one overflow on extended attributes reading...
CVE-2005-3712
Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes...
security flaw
The xattr file system code, as backported in Red Hat Enterprise Linux 3 on 64-bit systems, does not properly handle certain offsets, which allows local users to cause a denial of service system crash via certain actions on an ext3 file system with extended attributes enabled...
CVE-2005-0757
The xattr file system code, as backported in Red Hat Enterprise Linux 3 on 64-bit systems, does not properly handle certain offsets, which allows local users to cause a denial of service system crash via certain actions on an ext3 file system with extended attributes enabled...
CVE-2005-0757
The xattr file system code, as backported in Red Hat Enterprise Linux 3 on 64-bit systems, does not properly handle certain offsets, which allows local users to cause a denial of service system crash via certain actions on an ext3 file system with extended attributes enabled...
PT-2005-5554 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.4.27- versions Debian GNU/Linux kernel-headers-2.4.27- versions Debian GNU/Linux kernel-pcmcia-modules-2.4.27- versions Debian GNU/Linux kernel-patch-2.4.27- versions Debian GNU/Linux kernel-build-2.4.27-...