Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo GLSA-200408-17 Normal: Rsync Information Leak Risk Assessment

gentoo
Calendar Grey August 17, 2004
Dist Gentoo Esm H88
Explore the vulnerability related to information exposure in Gentoo Linux caused by rsync. Refer to security advisory GLSA 200408-17 for comprehensive remediation steps.
rsync fails to properly sanitize paths

Summary

Gentoo Linux Security Advisory GLSA 200408-17 https://security.gentoo.org/ Severity: Normal Title: rsync: Potential information leakage Date: August 17, 2004 Bugs: #60309 ID: 200408-17

Synopsis ======= rsync fails to properly sanitize paths. This vulnerability could allow the listing of arbitrary files and allow file overwriting outside module's path on rsync server configurations that allow uploading.
Background ========= rsync is a utility that provides fast incremental file transfers. It is used to efficiently synchronize files between hosts and is used by emerge to fetch Gentoo's Portage tree. rsyncd is the rsync daemon, which listens to connections from rsync clients.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected -------------------------...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo rsync file overwriting information leakage normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo rsync file overwriting information leakage normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here