[ubuntu/focal-security] rsync 3.1.3-8ubuntu0.4 (Accepted)
Mark Esler
mark.esler at canonical.com
Thu Aug 18 21:49:07 UTC 2022
rsync (3.1.3-8ubuntu0.4) focal-security; urgency=medium
* SECURITY UPDATE: zlib buffer overflow when inflating certain gzip
hearders.
- debian/patches/CVE-2022-37434-1.patch: catches overflow in
inflateGetHeader by enforcing buffer size.
- debian/patches/CVE-2022-37434-2.patch: prevents NULL dereference
regression previous patch introduced.
- CVE-2022-37434
Date: 2022-08-18 21:05:08.943699+00:00
Changed-By: Mark Esler <mark.esler at canonical.com>
https://launchpad.net/ubuntu/+source/rsync/3.1.3-8ubuntu0.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list