MiracleLinux 4 : rsync-3.0.6-5.AXS4.1 (AXSA:2011-124:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-124:01 advisory. Rsync uses a reliable algorithm to bring remote and host files into sync very quickly. Rsync is fast because it just sends the differences in the files over t...

Linux Distros Unpatched Vulnerability : CVE-2011-1097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service heap memory...

openSUSE Security Update : rsync (openSUSE-SU-2011:0441-1)

Specially crafted requests could cause a memory corruption on the receiving side of an rsync transfer client side or server that allows to push CVE-2011-1097. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : rsync (openSUSE-SU-2011:0441-1)

Specially crafted requests could cause a memory corruption on the receiving side of an rsync transfer client side or server that allows to push CVE-2011-1097. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

Oracle Linux 6 : rsync (ELSA-2011-0390)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2011-0390 advisory. 3.0.6-5.1 - Add upstream patch to fix CVE-2011-1097 - Incremental file-list corruption due to temporary fileextracnt increments Resolves: 684932 Tenable has...

Scientific Linux Security Update : rsync on SL6.x i386/x86_64

A memory corruption flaw was found in the way the rsync client processed malformed file list data. If an rsync client used the '--recursive' and '--delete' options without the '--owner' option when connecting to a malicious rsync server, the malicious server could cause rsync on the client system...

RedHat Update for rsync RHSA-2011:0390-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

FreeBSD Ports: rsync

The remote host is missing an update to the system as announced in the referenced advisory. VID 9a777c23-b310-11e0-832d-00215c6a37bb OpenVAS Vulnerability Test $ Description: Auto generated from VID 9a777c23-b310-11e0-832d-00215c6a37bb Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

FreeBSD Ports: rsync

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

rsync security, bug fix, and enhancement update

3.0.6-4 - fix 700450 - free parsed hostnames - fix 575022 - set TZ variable after chroot 3.0.6-3 - Add upstream patch to fix CVE-2011-1097 - Incremental file-list corruption due to temporary fileextracnt increments Resolves: 688923 3.0.6-2 - Remove BuildRequires dependency on popt-devel, until th...

Ubuntu: Security Advisory (USN-1124-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 11.1 Security Update : rsync (SAT Patch Number 4300)

Specially crafted requests could cause a memory corruption on the receiving side of an rsync transfer client side or server that allows to push CVE-2011-1097. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE Security Update : rsync (openSUSE-SU-2011:0441-1)

Specially crafted requests could cause a memory corruption on the receiving side of an rsync transfer client side or server that allows to push CVE-2011-1097. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

Mandriva Update for rsync MDVSA-2011:066 (rsync)

Check for the Version of rsync OpenVAS Vulnerability Test Mandriva Update for rsync MDVSA-2011:066 rsync Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for rsync FEDORA-2011-4413

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for rsync MDVSA-2011:066 (rsync)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

rsync -- incremental recursion memory corruption vulnerability

rsync development team reports: Fixed a data-corruption issue when preserving hard-links without preserving file ownership, and doing deletions either before or during the transfer CVE-2011-1097. This fixes some assert errors in the hard-linking code, and some potential failed checksums via -c th...

Mandriva Linux Security Advisory : rsync (MDVSA-2011:066)

A vulnerability wase discovered and corrected in rsync : rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service heap memory corruption and application crash or possibly execute arbitrary code via malformed...

CVE-2011-1097

rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service heap memory corruption and application crash or possibly execute arbitrary code via malformed data...

CVE-2011-1097

CVE-2011-1097 affects rsync 3.x before 3.0.8, where specific recursion, deletion, and ownership options enable a remote rsync server to trigger heap memory corruption, causing a Denial of Service or potentially allow arbitrary code execution via malformed data. The connected details corroborate t...