Debian Rsync vulnerabilities

CVE-2011-1097 [MEDIUM] CVE-2011-1097: rsync - rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options ... rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via malformed data. Scope: local bookworm: resolved (fixed in 3.0.8) bullseye: resolved (fixed in 3.0.8) forky: resolved (fixed in 3.0.8) sid

CVE-2008-1720 [HIGH] CVE-2008-1720: rsync - Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support... Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr) support enabled, might allow remote attackers to execute arbitrary code via unknown vectors. Scope: local bookworm: resolved (fixed in 3.0.2-1) bullseye: resolved (fixed in 3.0.2-1) forky: resolved (fixed in 3.0.2-1) sid: resolved (fixed in 3.0.2-1) trixie: resolved (fixed in 3.0.2-1)

CVE-2007-4091 [MEDIUM] CVE-2007-4091: rsync - Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote att... Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the f_name function. Scope: local bookworm: resolved (fixed in 2.6.9-5) bullseye: resolved (fixed in 2.6.9-5) forky: resolved (fixed in 2.6.9-5) sid: resolved (fixed in 2.6.9-5) trixie: resolved

CVE-2007-6200 [CRITICAL] CVE-2007-6200: rsync - Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsy... Unspecified vulnerability in rsync before 3.0.0pre6, when running a writable rsync daemon, allows remote attackers to bypass exclude, exclude_from, and filter and read or write hidden files via (1) symlink, (2) partial-dir, (3) backup-dir, and unspecified (4) dest options. Scope: local bookworm: resolved (fixed in 2.6.9-6) bullseye: resolved (fixed in 2.6.9-6) forky

CVE-2007-6199 [CRITICAL] CVE-2007-6199: rsync - rsync before 3.0.0pre6, when running a writable rsync daemon that is not using c... rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy. Scope: local bookworm: resolved (fixed in 2.6.9-6) bullseye: resolved (fixed in 2.6.9-6) forky: resolved (fixed in 2.6.9-6) si

CVE-2006-2083 [HIGH] CVE-2006-2083: rsync - Integer overflow in the receive_xattr function in the extended attributes patch ... Integer overflow in the receive_xattr function in the extended attributes patch (xattr.c) for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow. Scope: local bookworm: resolved (fixed in 2.6.8-1) bullseye: resolved (fixed in 2.6.8-1) forky: resolved (fixed in 2.6.8-1) sid: resolved (fixed in

CVE-2005-2096 [HIGH] CVE-2005-2096: aide - zlib 1.2 and later versions allows remote attackers to cause a denial of service... zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file. Scope: local bookworm: resolved (fixed in 0.10-6.1.1) bullseye: resolved (fixed in 0.10-6.1.1) forky: resolved (

CVE-2004-0426 [MEDIUM] CVE-2004-0426: rsync - rsync before 2.6.1 does not properly sanitize paths when running a read/write da... rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path. Scope: local bookworm: resolved (fixed in 2.6.1-1) bullseye: resolved (fixed in 2.6.1-1) forky: resolved (fixed in 2.6.1-1) sid: resolved (fixed in 2.6.1-1) trixie: resolved (fixed in 2.6.

CVE-2004-0792 [MEDIUM] CVE-2004-0792: rsync - Directory traversal vulnerability in the sanitize_path function in util.c for rs... Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files. Scope: local bookworm: resolved (fixed in 2.6.2-3) bullseye: resolved (fixed in 2.6.2-3) forky: resolved (fixed in 2.6.2-3) sid: resolved (fixed in 2.6.2-3) trixie: resolved (fixed in 2.6.2-3)

CVE-2004-2093 [MEDIUM] CVE-2004-2093: rsync - Buffer overflow in the open_socket_out function in socket.c for rsync 2.5.7 and ... Buffer overflow in the open_socket_out function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long RSYNC_PROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional privileges beyond those that are already available to the user. There

CVE-2003-0962 [HIGH] CVE-2003-0962: rsync - Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, a... Heap-based buffer overflow in rsync before 2.5.7, when running in server mode, allows remote attackers to execute arbitrary code and possibly escape the chroot jail. Scope: local bookworm: resolved (fixed in 2.5.6-1.1) bullseye: resolved (fixed in 2.5.6-1.1) forky: resolved (fixed in 2.5.6-1.1) sid: resolved (fixed in 2.5.6-1.1) trixie: resolved (fixed in 2.5.6-1.1)