Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: GLSA-200407-10 Normal: Rsync Directory Traversal Threat

gentoo
Calendar Grey July 12, 2004
Dist Gentoo Esm H88
Gentoo's notice on the critical flaw in rsync that permits directory traversal, outlining the severe risks of system exploitation.
Under specific conditions, the rsync daemon is vulnerable to a directory traversal allowing to write files outside a sync module.

Summary

Gentoo Linux Security Advisory GLSA 200407-10 https://security.gentoo.org/ Severity: Normal Title: rsync: Directory traversal in rsync daemon Date: July 12, 2004 Bugs: #49534 ID: 200407-10

Synopsis ======= Under specific conditions, the rsync daemon is vulnerable to a directory traversal allowing to write files outside a sync module.
Background ========= rsync is a utility that provides fast incremental file transfers. It is used to efficiently synchronize files between hosts and is used by emerge to fetch Gentoo's Portage tree. rsyncd is the rsync daemon, which listens to connections from rsync clients.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/rsync <= 2.6.0-r...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo directory traversal normal severity rsync daemon

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo directory traversal normal severity rsync daemon

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here