Fedora Linux Advisory: rsyncDec 05, 2003, 02:57 (0 Talkback[s])
Fedora Security Update Notification
A heap overflow bug exists in rsync versions prior to 2.5.7. On machines where the rsync server has been enabled, a remote attacker could use this flaw to execute arbitrary code as an unprivileged user. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2003-0962 to this issue.
* Wed Dec 03 2003 Bill Nottingham <firstname.lastname@example.org> 2.5.7-2
This update can be downloaded from:
This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command.
0 Talkback[s] (click to add your comment)