Your submission was sent successfully! Close

CVE-2006-2083

Published: 28 April 2006

Integer overflow in the receive_xattr function in the extended attributes patch (xattr.c) for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow.

Priority

Unknown

Status

Package Release Status
rsync
Launchpad, Ubuntu, Debian
dapper
Released (2.6.6-1ubuntu2.1)
edgy
Released (2.6.8-2ubuntu3.1)
feisty
Released (2.6.9-3ubuntu1.1)
gutsy
Released (2.6.9-5ubuntu1)
upstream Needs triage