Fedora Core 5: FEDORA-2006-700 Critical: Rsync Buffer Overflow

Rsync uses a reliable algorithm to bring remote and host files into

sync very quickly. Rsync is fast because it just sends the differences

in the files over the network instead of sending the complete

files. Rsync is often used as a very powerful mirroring process or

just as a more capable replacement for the rcp command. A technical

report which describes the rsync algorithm is included in this

package.

- Add my xattrs_bug patch to fix a bug where xattrs don't get sent correctly.

- Add BuildRequires to make sure libattr-devel and libacl-devel are avaliable

- replace --with... with --enable... so they actually work

- Add make, autoconf and gcc to BuildRequires

* Mon May 8 2006 Jay Fenlason 2.6.8-1.FC5

- New upstream release

- Use the upstream xattr patch instead of mine. This closes

bz#190208 CVE-2006-2083 rsync buffer overflow issue

6baf5e2783dbf65fb517aac84d7169a92cdd64a7 SRPMS/rsync-2.6.8-1.FC5.1.src.rpm

6baf5e2783dbf65fb517aac84d7169a92cdd64a7 noarch/rsync-2.6.8-1.FC5.1.src.rpm

7b0a2abdb53926a303f27f86a4a819633b91ef22 ppc/debug/rsync-debuginfo-2.6.8-1.FC5.1.ppc.rpm

7fe6e78bc82386c235012d7ec375585fec5a2e79 ppc/rsync-2.6.8-1.FC5.1.ppc.rpm

3d886e47274c67607abebf2c05876265f7de09c4 x86_64/rsync-2.6.8-1.FC5.1.x86_64.rpm

70b8d4a9c898aac3db630dc559291de7f6b2e3d6 x86_64/debug/rsync-debuginfo-2.6.8-1.FC5.1.x86_64.rpm

715e6823c648f6c1039fd9c041055d6b0fdd77bc i386/rsync-2.6.8-1.FC5.1.i386.rpm

2ede8682bf52871616366289b044168af37d289c i386/debug/rsync-debuginfo-2.6.8-1.FC5.1.i386.rpm

This update can be installed with the 'yum' update program. Use 'yum update

package-name' at the command line. For more information, refer to 'Managing

Software with yum,' available at .

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/