Ubuntu
rsync package

  1. Bug #1307230
  2. Comment #3

Comment 3 for bug 1307230

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package rsync - 3.1.0-2ubuntu0.1

---------------
rsync (3.1.0-2ubuntu0.1) trusty-security; urgency=medium

  * SECURITY UPDATE: denial of service via invalid username (LP: #1307230)
    - debian/patches/CVE-2014-2855.diff: avoid infinite wait reading
      secrets file in authenticate.c.
    - CVE-2014-2855
 -- Marc Deslauriers <email address hidden> Thu, 17 Apr 2014 12:56:34 -0400