[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [linux-security] rsync remote root exploit



On Mon, Jan 28, 2002 at 12:41:57PM -0800, Martin Siegert wrote:
> Topic
> =====
> remote root exploit in rsync
> 
> Solution
> ========
> upgrade to rsync-2.5.2 or a patched version for your distribution.

The RedHat rpms listed in the previous advisory contain an error in the
original bugfix patch for the security problem - the new rsync could fail
under some circumstances. The rpms listed below include the security patch
from the recently released rsync-2.5.2.

RedHat 6.x
----------
rpm -Fvh rsync-2.4.6-1.6.i386.rpm

RedHat 7.x
----------
rpm -Fvh rsync-2.4.6-10.i386.rpm