9 matches found
openSUSE Security Update : Rsync (openSUSE-SU-2014:0595-1)
Rsync was updated to fix a denial of service attack that could be used by remote attackers without authentification CVE-2014-2855. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
[USN-2171-1] rsync vulnerability
========================================================================== Ubuntu Security Notice USN-2171-1 April 23, 2014 rsync vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...
CVE-2014-2855
The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...
BELL-CVE-2014-2855 CVE-2014-2855 does not affect BellSoft software
Bulletin has no description...
CVE-2014-2855
The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...
CVE-2014-2855
The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...
CVE-2014-2855
CVE-2014-2855 affects rsync up to version 3.1.0. The vulnerability resides in check_secret() in authenticate.c, where a username not present in the secrets file can trigger an infinite loop and CPU denial of service. Multiple advisories confirm the issue and reference the affected rsync, with pat...
Fedora 20 : rsync-3.1.0-3.fc20 (2014-5315)
This update fixes CVE-2014-2855 and temporary reverts compilation with system provided zlibBZ1043965. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...
CVE-2014-2855
The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...