[SECURITY] Fedora Core 1 Test Update: rsync-2.5.7-2
Bill Nottingham
notting at redhat.com
Thu Dec 4 05:50:32 UTC 2003
---------------------------------------------------------------------
Fedora Test Security Update Notification
FEDORA-2003-030
2003-12-04
---------------------------------------------------------------------
Name : rsync
Version : 2.5.7
Release : 2
Summary : A program for synchronizing files over a network.
Description :
Rsync uses a reliable algorithm to bring remote and host files into
sync very quickly. Rsync is fast because it just sends the differences
in the files over the network instead of sending the complete
files. Rsync is often used as a very powerful mirroring process or
just as a more capable replacement for the rcp command. A technical
report which describes the rsync algorithm is included in this
package.
---------------------------------------------------------------------
Update Information:
New rsync packages are available that fix a heap overflow in the rsync
server; this vulnerability could be used to execute arbitrary code as
an unprivileged user. It is recommended that all users using the server
functionality of rsync upgrade to the fixed packages.
---------------------------------------------------------------------
* Wed Dec 03 2003 Bill Nottingham <notting at redhat.com> 2.5.7-2
- rebuild
* Wed Dec 03 2003 Bill Nottingham <notting at redhat.com> 2.5.7-1
- update to 2.5.7
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/1/
f0197db154b24365536b43d1925c8202 SRPMS/rsync-2.5.7-2.src.rpm
3b36cf7353f5fe5435434b41014ae82a i386/rsync-2.5.7-2.i386.rpm
2caa1a6631e87cd03e12d4c9f3b93c0d i386/debug/rsync-debuginfo-2.5.7-2.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
More information about the test
mailing list