View Full Version : USN-500-1: rsync vulnerability

August 21st, 2007, 02:10 AM
Referenced CVEs:

================================================== ========= Ubuntu Security Notice USN-500-1 August 20, 2007rsync vulnerabilityCVE-2007-4091============================================== =============A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 6.10Ubuntu 7.04This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: rsync 2.6.6-1ubuntu2.1Ubuntu 6.10: rsync 2.6.8-2ubuntu3.1Ubuntu 7.04: rsync 2.6.9-3ubuntu1.1In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:Sebastian Krahmer discovered that rsync contained an off-by-onemiscalculation when handling certain file paths. By creating a speciallycrafted tree of files and tricking an rsync server into processing them,a remote attacker could write a single NULL to stack memory, possiblyleading to arbitrary code execution.

More... (http://www.ubuntu.com/usn/usn-500-1)