Gentoo Security Advisory GLSA 200804-16 (rsync)

The remote host is missing updates announced in advisory GLSA 200804-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora 7 : rsync-2.6.9-6.fc7 (2008-3060)

Tue Apr 8 2008 Simo Sorce 2.6.9-6.fc7 - Security release: http://rsync.samba.org/security.htmls302 - Wed Sep 5 2007 Simo Sorce 2.6.9-3.fc7 - Add patch to fix crash bug with hardlinks and ACLs patches Note that Tenable Network Security has extracted the preceding description block directly from...

rsync: Two buffer overflows

Background rsync is a file transfer program to keep remote directories synchronized. Description Sebastian Krahmer from the SUSE Security Team discovered two off-by-one errors in the function "fname" in file sender.c when processing overly long directory names. Impact A remote attacker could enti...

CVE-2007-4091

Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the fname function...