Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Fedora 23: Critical Rsync Security Update - Symlink Threat Fixed

fedora
Calendar Grey January 10, 2016
Dist Fedora Esm H88
Urgent security patch for Fedora 23's rsync mitigating vulnerabilities in file transfer via symbolic links. Safeguard your system immediately!
Security fix for rsync - Transferring file outside destination path via just- sent symlink

Summary

Rsync uses a reliable algorithm to bring remote and host files into

sync very quickly. Rsync is fast because it just sends the differences

in the files over the network instead of sending the complete

files. Rsync is often used as a very powerful mirroring process or

just as a more capable replacement for the rcp command. A technical

report which describes the rsync algorithm is included in this

package.

Update Information:

Security fix for rsync - Transferring file outside destination path via just- sent symlink

Change Log

References


[ 1 ] Bug #1293854 - rsync: Transferring file outside destination path via just-sent symlink https://bugzilla.redhat.com/show_bug.cgi?id=1293854

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update rsync' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: rsync
Product: Fedora 23
Version: 3.1.1
Release: 8.fc23
URL:
Summary: A program for synchronizing files over a network

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here