[CVE-2007-6199 and CVE-2007-6200] rsync is vulnerable
Bug #174133 reported by
Stephan Rügamer
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
rsync (Debian) |
Fix Released
|
Unknown
|
|||
rsync (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Bug Description
Binary package hint: rsync
Dear Colleagues,
from DBTS: http://
the new rsync upstream release fixes two security bugs which
can be exploited via a symlink attack.
Fixes can be found upstream: http://
Changed in rsync: | |
assignee: | nobody → shermann |
status: | New → In Progress |
Changed in rsync: | |
assignee: | shermann → nobody |
status: | In Progress → Confirmed |
Changed in rsync: | |
status: | Unknown → Fix Released |
To post a comment you must log in.
Fixed in hardy.
emgent@ emanuele- gentili: ~/Ubuntu/ Security/ hardy/rsync/ rsync-2. 6.9/debian/ patches$ ls -la |grep CVE-2007-6200 6200-6199. patch emanuele- gentili: ~/Ubuntu/ Security/ hardy/rsync/ rsync-2. 6.9/debian/ patches$
-rw-r--r--+ 1 emgent emgent 14986 2008-04-29 10:19 CVE-2007-
emgent@