2
Candidate: CVE-2008-1720
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1720
5
http://samba.anu.edu.au/rsync/security.html#s3_0_2
6
https://usn.ubuntu.com/usn/usn-600-1
8
Buffer overflow in rsync 2.6.9 to 3.0.1, with extended attribute (xattr)
9
support enabled, might allow remote attackers to execute arbitrary code via
13
jdstrand> 3.0, but code is in patches/acls.diff for feisty-hardy
20
patch: http://rsync.samba.org/ftp/rsync/security/rsync-3.0.1-xattr-alloc.diff
21
upstream_rsync: needs-triage
22
dapper_rsync: not-affected
23
edgy_rsync: not-affected
24
feisty_rsync: released (2.6.9-3ubuntu1.2)
25
gutsy_rsync: released (2.6.9-5ubuntu1.1)
26
hardy_rsync: not-affected (2.6.9-6ubuntu2)
27
devel_rsync: not-affected (2.6.9-6ubuntu2)