Debian alert: updated rsync fix

Posted by dave on Feb 3, 2002 5:50 AM EDT
Mailing list
Mail this story
Print this story

In Debian Security Advisory DSA-106-1 we reported a exploitable problem in rsync. For details please see that advisory.

-----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory DSA-106-2                   security@debian.org
http://www.debian.org/security/                         Wichert Akkerman
February  3, 2002
- ------------------------------------------------------------------------


Package        : rsync
Problem type   : remote exploit
Debian-specific: no

In Debian Security Advisory DSA-106-1 we reported a exploitable
problem in rsync. For details please see that advisory.

Unfortunately the patch used to fix that problem broke rsync.
This has been fixed in version 2.3.2-1.5 and we recommend you
upgrade to that version immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.


Debian GNU/Linux 2.2 alias potato
- ---------------------------------

  Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

  Source archives:
    http://security.debian.org/dists/stable/updates/main/source/rsync_2.3.2-1.5.diff.gz
      MD5 checksum: fa4f369f96794c405a588d240e8e83d7
    http://security.debian.org/dists/stable/updates/main/source/rsync_2.3.2-1.5.dsc
      MD5 checksum: 2a72990f14cdfe995200ea7715da689a
    http://security.debian.org/dists/stable/updates/main/source/rsync_2.3.2.orig.tar.gz
      MD5 checksum: 7dbb513c0f37bbbab621a8625c10986b

  Alpha architecture:
    http://security.debian.org/dists/stable/updates/main/binary-alpha/rsync_2.3.2-1.5_alpha.deb
      MD5 checksum: ebd34e43943a2b100b9d1c206b30d716

  ARM architecture:
    http://security.debian.org/dists/stable/updates/main/binary-arm/rsync_2.3.2-1.5_arm.deb
      MD5 checksum: 89a0af8c14b1891721fd6ce0d4f86d95

  Intel IA-32 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-i386/rsync_2.3.2-1.5_i386.deb
      MD5 checksum: 41891f496f0b38b176de1bd3df04945c

  Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-m68k/rsync_2.3.2-1.5_m68k.deb
      MD5 checksum: 9b07b74b4dffd3d16caa534a0ee8f0ac

  PowerPC architecture:
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/rsync_2.3.2-1.5_powerpc.deb
      MD5 checksum: 883bef75b35c6d863be85cc4ca287bf8

  Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/main/binary-sparc/rsync_2.3.2-1.5_sparc.deb
      MD5 checksum: bde68a1b6ead9d858b9d7e8c0d326b93

  These packages will be moved into the stable distribution on its next
  revision.

- -- 
- ----------------------------------------------------------------------------
apt-get: deb http://security.debian.org/ stable/updates main
dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBPF1ORqjZR/ntlUftAQFKGQL/bt7OdigB+1OhWLjNGdlTPFZ3ifnnGJ78
IKEYwLnzGBlE5ssWhHI+WvuIvVQRHAgvGKkfoaFbRBfNHDkQ5exDYW8EQyRHVA3T
cDItbGuxmbYetsTiKcBvempwl7UJPc/s
=lbcR
-----END PGP SIGNATURE-----


  Nav
» Read more about: Story Type: Security; Groups: Debian

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.