Secunia Logo
Netsikker nu! 2008
 
Fedora update for rsync
Secunia Advisory: SA12335
Release Date: 2004-08-20
Popularity: 6,590 views

Critical:
Less critical
Impact: Exposure of system information
Exposure of sensitive information
Where: From remote
Solution Status: Vendor Patch

OS:Fedora Core 1
Fedora Core 2

Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2004-0792


Description:
Fedora has issued an update for rsync. This fixes a vulnerability, which potentially can be exploited by malicious users to read or write arbitrary files on a vulnerable system.

For more information:
SA12294

Solution:
Apply updated packages.

Fedora Core 1:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/

01fb9ef513ef0d484efb1bd66e91ad69 SRPMS/rsync-2.5.7-5.fc1.1.src.rpm
dd13aba3dc99efc30ecaa0eeb49f242e x86_64/rsync-2.5.7-5.fc1.1.x86_64.rpm
d8963193e902465e632e0ed993e92f82 x86_64/debug/rsync-debuginfo-2.5.7-5.fc1.1.x86_64.rpm
bab0cb276f77596a6b9520401298764f i386/rsync-2.5.7-5.fc1.1.i386.rpm
094fa40ae453fddd43edce9fd10a054b i386/debug/rsync-debuginfo-2.5.7-5.fc1.1.i386.rpm


Fedora Core 2:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

d6ae9d1c6e5d18903911e1fdedd55a03 SRPMS/rsync-2.6.2-1.fc2.0.src.rpm
f03bc05659c874cb39d4bab606dfaabf x86_64/rsync-2.6.2-1.fc2.0.x86_64.rpm
97f2ed68e7b3f7e0c5888b0aa8cd2088 x86_64/debug/rsync-debuginfo-2.6.2-1.fc2.0.x86_64.rpm
1dd097feb524de781f6ae9ecf74bcc3d i386/rsync-2.6.2-1.fc2.0.i386.rpm
38590683c5bca0a599fbc70a971c6b7e i386/debug/rsync-debuginfo-2.6.2-1.fc2.0.i386.rpm

Other References:
SA12294:
http://secunia.com/advisories/12294/


Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Oracle Products Multiple Vulnerabilities // 51 views
2. Sun Solaris "sadmind" Buffer Overflow Vulnerability // 40 views
3. BEA WebLogic Server Multiple Vulnerabilities // 36 views
4. Elxis mod_language.php Cross-Site Scripting Vulnerability // 35 views
5. MyPHPDating "id" SQL Injection Vulnerability // 34 views
6. BEA WebLogic Workshop NetUI Pageflow Information Disclosure Vulnerability // 32 views
7. VLC Media Player XSPF Processing Memory Corruption Vulnerability // 32 views
8. WordPress WP Comment Remix Plugin Multiple Vulnerabilities // 30 views
9. BEA WebLogic Server Multiple Authorizers Security Bypass // 28 views
10. Microsoft Windows IIS IPP Service Integer Overflow Vulnerability // 25 views