Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2007:4798

Overview

Id SUSE-2007:4798
Name Novell SUSE 2007:4798 rsync security update for SLE 10 SP1 i586
Vendor Name novell
Product None
Content Type Critical - 01 Critical - 01
Language(s)
Operating System(s) Linux 
Released On 11 Dec 2007 12:00:00

SUSE-2007:4798

Novell SUSE 2007:4798 rsync security update for SLE 10 SP1 i586

Vendor Name

novell

Product

None

Released On

11 Dec 2007 12:00:00

Url

http://www.novell.com/support/search.do?usemicrosite=true&searchString=84c0e58baea4e5213424103bd3ab770c

Description

LSAC(v2)
This update fixes a bug in rsync that allowed remote attackers to access restricted files outside a module's hierarchy if no chroot setup was used. (CVE-2007-6199) Please read http://rsync.samba.org/security.html entry from November 28th, 2007 to get more information about a secure configuration of rsync that also covers the bug tracked with CVE-2007-6200. This update also fixes some crashes that only affect rsync-2.6.8 on SLES10.

Related Resources

Related Vulnerabilities

CVE-2007-6199   CVE-2007-6200  

Related Patches

None

Superseded Patches

None


Last Updated: 27 May 2016 11:23:32