Mandriva Update For Rsync MDKSA-2007:166 (rsync) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Sebastian Krahmer of the SUSE Security Team discovered an off-by-one buffer overflow within rsync. It is not clear if this problem is exploitable, however updates are available to correct the issue.

Affected

rsync on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64, Mandriva Linux 2007.1, Mandriva Linux 2007.1/X86_64

Severity

Classification

CVE CVE-2007-4091
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:161 (squid)
Mandrake Security Advisory MDVSA-2009:053 (squirrelmail)
Mandrake Security Advisory MDVSA-2009:087 (openssl)
Mandrake Security Advisory MDVSA-2009:208 (libgadu)
Mandrake Security Advisory MDVSA-2009:025 (pidgin)

Mandriva Update for rsync MDKSA-2007:166 (rsync)

Take action and discover your vulnerabilities