Packages
- rsync - fast, versatile, remote (and local) file-copying tool
Details
It was discovered that rsync incorrectly handled certain data input.
An attacker could possibly use this to cause a denial of service or
execute arbitrary code. (CVE-2017-16548)
It was discovered that rsync incorrectly parsed certain arguments. An attacker
could possibly use this to bypass arguments and execute arbitrary code.
(CVE-2018-5764)
It was discovered that rsync incorrectly handled certain data input.
An attacker could possibly use this to cause a denial of service or
execute arbitrary code. (CVE-2017-16548)
It was discovered that rsync incorrectly parsed certain arguments. An attacker
could possibly use this to bypass arguments and execute arbitrary code.
(CVE-2018-5764)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
Ubuntu Release | Package Version | ||
---|---|---|---|
17.10 artful | rsync – 3.1.2-2ubuntu0.2 | ||
16.04 xenial | rsync – 3.1.1-3ubuntu1.2 | ||
14.04 trusty | rsync – 3.1.0-2ubuntu0.4 |
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.