CVE-2008-1720

Published: 10 April 2008

Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support enabled, might allow remote attackers to execute arbitrary code via unknown vectors.

Priority

Medium

Status

Package Release Status
rsync
Launchpad, Ubuntu, Debian
Upstream Needs triage

Patches:
Other: http://rsync.samba.org/ftp/rsync/security/rsync-3.0.1-xattr-alloc.diff