Packages
- rsync - fast, versatile, remote (and local) file-copying tool
Details
It was discovered that rsync incorrectly handled certain data input.
An attacker could possibly use this to cause a denial of service or
execute arbitrary code. (CVE-2017-16548)
It was discovered that rsync incorrectly parsed certain arguments. An attacker
could possibly use this to bypass arguments and execute arbitrary code.
(CVE-2018-5764)
It was discovered that rsync incorrectly handled certain data input.
An attacker could possibly use this to cause a denial of service or
execute arbitrary code. (CVE-2017-16548)
It was discovered that rsync incorrectly parsed certain arguments. An attacker
could possibly use this to bypass arguments and execute arbitrary code.
(CVE-2018-5764)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 17.10 artful | rsync – 3.1.2-2ubuntu0.2 | ||
| 16.04 LTS xenial | rsync – 3.1.1-3ubuntu1.2 | ||
| 14.04 LTS trusty | rsync – 3.1.0-2ubuntu0.4 | ||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.