Paketname
rsync
Datum
2011-04-05
Advisory ID
MDVSA-2011:066
Betroffene Versionen
2009.0 x86_64 , MES5 i586 , 2010.0 x86_64 , 2010.1 i586 , 2010.0 i586 , 2009.0 i586 , MES5 x86_64 , 2010.1 x86_64

Problembeschreibung

A vulnerability wase discovered and corrected in rsync:

rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership
options are used, allows remote rsync servers to cause a denial of
service (heap memory corruption and application crash) or possibly
execute arbitrary code via malformed data (CVE-2011-1097).

Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

The updated packages have been patched to correct this issue.

Aktualisierte Pakete

2009.0 x86_64

 915befe0a3ae2c6f61ad37537c7db891  2009.0/x86_64/rsync-3.0.4-1.1mdv2009.0.x86_64.rpm 
 f62de1b6e3ae6351a93c1bd958aa7e75  2009.0/SRPMS/rsync-3.0.4-1.1mdv2009.0.src.rpm

MES5 i586

 f6390fc4cc76121e541c21ad77060eae  mes5/i586/rsync-3.0.4-1.1mdvmes5.2.i586.rpm 
 9bec0151793e3dc9d397eb6a38643c73  mes5/SRPMS/rsync-3.0.4-1.1mdvmes5.2.src.rpm

2010.0 x86_64

 aed00d4bb59e577334025052e52a7cd1  2010.0/x86_64/rsync-3.0.6-1.1mdv2010.0.x86_64.rpm 
 99ab8f72cf5db9a5f64871d9d6438f7c  2010.0/SRPMS/rsync-3.0.6-1.1mdv2010.0.src.rpm

2010.1 i586

 ad9fd896baea080a0e11f28d55883211  2010.1/i586/rsync-3.0.7-1.1mdv2010.2.i586.rpm 
 83e9ba7df584f502b98a8e6e9afdc58e  2010.1/SRPMS/rsync-3.0.7-1.1mdv2010.2.src.rpm

2010.0 i586

 ee40d9cc11d78aa51d0ea11790b6d77e  2010.0/i586/rsync-3.0.6-1.1mdv2010.0.i586.rpm 
 99ab8f72cf5db9a5f64871d9d6438f7c  2010.0/SRPMS/rsync-3.0.6-1.1mdv2010.0.src.rpm

2009.0 i586

 7f9ed37868d8403bb476b5d073ec65c9  2009.0/i586/rsync-3.0.4-1.1mdv2009.0.i586.rpm 
 f62de1b6e3ae6351a93c1bd958aa7e75  2009.0/SRPMS/rsync-3.0.4-1.1mdv2009.0.src.rpm

MES5 x86_64

 1bd4d0c9d353bec028fb7738dd5ef059  mes5/x86_64/rsync-3.0.4-1.1mdvmes5.2.x86_64.rpm 
 9bec0151793e3dc9d397eb6a38643c73  mes5/SRPMS/rsync-3.0.4-1.1mdvmes5.2.src.rpm

2010.1 x86_64

 f77e3cf15d23641da656191ca0d3f1d6  2010.1/x86_64/rsync-3.0.7-1.1mdv2010.2.x86_64.rpm 
 83e9ba7df584f502b98a8e6e9afdc58e  2010.1/SRPMS/rsync-3.0.7-1.1mdv2010.2.src.rpm

Referenzen