[Bug 1307230] Re: 3.1.0 daemon infinite loop when no matched user in secrets
Launchpad Bug Tracker
1307230 at bugs.launchpad.net
Wed Apr 23 14:39:10 UTC 2014
This bug was fixed in the package rsync - 3.1.0-2ubuntu0.1
---------------
rsync (3.1.0-2ubuntu0.1) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service via invalid username (LP: #1307230)
- debian/patches/CVE-2014-2855.diff: avoid infinite wait reading
secrets file in authenticate.c.
- CVE-2014-2855
-- Marc Deslauriers <marc.deslauriers at ubuntu.com> Thu, 17 Apr 2014 12:56:34 -0400
** Changed in: rsync (Ubuntu Trusty)
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to rsync in Ubuntu.
https://bugs.launchpad.net/bugs/1307230
Title:
3.1.0 daemon infinite loop when no matched user in secrets
To manage notifications about this bug go to:
https://bugs.launchpad.net/rsync/+bug/1307230/+subscriptions
More information about the Ubuntu-server-bugs
mailing list