[Secure-testing-team] Bug#744791: rsync: Daemon infinite loop when no matched user in secrets
Salvatore Bonaccorso
carnil at debian.org
Mon Apr 14 19:28:08 UTC 2014
Source: rsync
Version: 3.1.0-1
Severity: grave
Tags: security upstream fixed-upstream
Hi
There is a DoS against a rsync daemon, for detail see [1,2]. There is
also an upstream fix at [3].
[1] https://bugs.launchpad.net/ubuntu/+source/rsync/+bug/1307230
[2] https://bugzilla.samba.org/show_bug.cgi?id=10551
[3] https://git.samba.org/?p=rsync.git;a=commitdiff;h=0dedfbce2c1b851684ba658861fe9d620636c56a
Regards,
Salvatore
More information about the Secure-testing-team
mailing list