USN-2879-1: rsync vulnerability
21 January 2016
rsync could be made to write files outside of the expected directory.
- rsync - fast, versatile, remote (and local) file-copying tool
It was discovered that rsync incorrectly handled invalid filenames. A
malicious server could use this issue to write files outside of the
intended destination directory.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.