Debian: UPDATE: 'rsync' Remote command execution

    Date03 Feb 2002
    CategoryDebian
    2200
    Posted ByLinuxSecurity Advisories
    Unfortunately the patch used to fix that problem broke rsync.This has been fixed in version 2.3.2-1.5 and we recommend youupgrade to that version immediately.
    
    ------------------------------------------------------------------------
    Debian Security Advisory DSA-106-2                   This email address is being protected from spambots. You need JavaScript enabled to view it. 
    http://www.debian.org/security/                         Wichert Akkerman
    February  3, 2002
    ------------------------------------------------------------------------
    
    
    Package        : rsync
    Problem type   : remote exploit
    Debian-specific: no
    
    In Debian Security Advisory DSA-106-1 we reported a exploitable
    problem in rsync. For details please see that advisory.
    
    Unfortunately the patch used to fix that problem broke rsync.
    This has been fixed in version 2.3.2-1.5 and we recommend you
    upgrade to that version immediately.
    
    wget url
            will fetch the file for you
    dpkg -i file.deb
            will install the referenced file.
    
    
    Debian GNU/Linux 2.2 alias potato
    ---------------------------------
    
      Potato was released for alpha, arm, i386, m68k, powerpc and sparc.
    
      Source archives:
         http://security.debian.org/dists/stable/updates/main/source/rsync_2.3.2-1.5.diff.gz
          MD5 checksum: fa4f369f96794c405a588d240e8e83d7
         http://security.debian.org/dists/stable/updates/main/source/rsync_2.3.2-1.5.dsc
          MD5 checksum: 2a72990f14cdfe995200ea7715da689a
         http://security.debian.org/dists/stable/updates/main/source/rsync_2.3.2.orig.tar.gz
          MD5 checksum: 7dbb513c0f37bbbab621a8625c10986b
    
      Alpha architecture:
         http://security.debian.org/dists/stable/updates/main/binary-alpha/rsync_2.3.2-1.5_alpha.deb
          MD5 checksum: ebd34e43943a2b100b9d1c206b30d716
    
      ARM architecture:
         http://security.debian.org/dists/stable/updates/main/binary-arm/rsync_2.3.2-1.5_arm.deb
          MD5 checksum: 89a0af8c14b1891721fd6ce0d4f86d95
    
      Intel IA-32 architecture:
         http://security.debian.org/dists/stable/updates/main/binary-i386/rsync_2.3.2-1.5_i386.deb
          MD5 checksum: 41891f496f0b38b176de1bd3df04945c
    
      Motorola 680x0 architecture:
         http://security.debian.org/dists/stable/updates/main/binary-m68k/rsync_2.3.2-1.5_m68k.deb
          MD5 checksum: 9b07b74b4dffd3d16caa534a0ee8f0ac
    
      PowerPC architecture:
         
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/rsync_2.3.2-1.5_powerpc.deb
          MD5 checksum: 883bef75b35c6d863be85cc4ca287bf8
    
      Sun Sparc architecture:
         http://security.debian.org/dists/stable/updates/main/binary-sparc/rsync_2.3.2-1.5_sparc.deb
          MD5 checksum: bde68a1b6ead9d858b9d7e8c0d326b93
    
      These packages will be moved into the stable distribution on its next
      revision.
    
    --
    ----------------------------------------------------------------------------
    apt-get: deb  http://security.debian.org/ stable/updates main
    dpkg-ftp:  ftp://security.debian.org/debian-security dists/stable/updates/main
    Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.
    
    
    
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"25","type":"x","order":"1","pct":54.35,"resources":[]},{"id":"88","title":"Should be more technical","votes":"5","type":"x","order":"2","pct":10.87,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"16","type":"x","order":"3","pct":34.78,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.