[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [linux-security] rsync remote root exploit

To: linux-security
Subject: Re: [linux-security] rsync remote root exploit
From: Martin Siegert <siegert@sfu.ca>
Date: Wed, 30 Jan 2002 19:24:16 -0800
In-Reply-To: <20020128124157.A8499@stikine.ucs.sfu.ca>; from siegert@sfu.ca on Mon, Jan 28, 2002 at 12:41:57PM -0800
References: <20020128124157.A8499@stikine.ucs.sfu.ca>
User-Agent: Mutt/1.2.5.1i

On Mon, Jan 28, 2002 at 12:41:57PM -0800, Martin Siegert wrote:
> Topic
> =====
> remote root exploit in rsync
> 
> Solution
> ========
> upgrade to rsync-2.5.2 or a patched version for your distribution.

The RedHat rpms listed in the previous advisory contain an error in the
original bugfix patch for the security problem - the new rsync could fail
under some circumstances. The rpms listed below include the security patch
from the recently released rsync-2.5.2.

RedHat 6.x
----------
rpm -Fvh rsync-2.4.6-1.6.i386.rpm

RedHat 7.x
----------
rpm -Fvh rsync-2.4.6-10.i386.rpm

References:
- [linux-security] rsync remote root exploit
  - From: Martin Siegert <siegert@sfu.ca>
- [linux-security] rsync remote root exploit
  - From: Martin Siegert <siegert@sfu.ca>

Prev by Date: [linux-security] rsync remote root exploit
Next by Date: Re: [linux-security] rsync remote root exploit
Prev by thread: [linux-security] rsync remote root exploit
Next by thread: Re: [linux-security] rsync remote root exploit
Index(es):
- Date
- Thread