Summary: | net-misc/rsync < 2.6.9-r5 Security bypass (CVE-2007-{6199,6200}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Lars Hartmann <lars> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | bernd, chainsaw |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://secunia.com/advisories/27863/ | ||
Whiteboard: | B4 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Lars Hartmann
2007-11-30 10:01:30 UTC
maintainers please advise and provide an updated ebuild rsync-2.6.9-r5 in the tree with the fix from upstream Arches, please test and mark stable net-misc/rsync-2.6.9-r5. Target keywords : "alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86" x86 stable amd64 stable Stable on arm/sparc alpha tested and marked stable. ppc stable ppc64 stable Stable for HPPA. ia64 stable this bug here is ready for glsa decision Degrading to B4 since this only affects daemons that allow writing via rsync. I tend to vote NO here because it affects what seems to me a marginal configuration. voting NO too and closing. Does not affect current (2008.0) release. Removing release. |