2463 matches found
[SECURITY] New versions of rsync fixes security hole
This is an old report from May 1999 but it wasnt reported on this channel yet. The author of rsync, Andrew Tridgell, has reported that former versions of rsync contained a security-related bug. I you were transferring an empty directory into a non-existent directory on a remote host, permissions ...
rsync.permissions.txt
Date: Wed, 7 Apr 1999 22:21:30 +1000 From: Andrew Tridgell To: [email protected] Subject: rsync 2.3.1 release - security fix I discovered a security hole in rsync yesterday and have released rsync 2.3.1 to fix it. The new version and patches against the last version are available at...
CVE-1999-0473
The rsync command before rsync 2.3.1 may inadvertently change the permissions of the client's working directory to the permissions of the directory being transferred...