Re: Serious rsync security issues
- In reply to: Liam Proven : "Re: Serious rsync security issues"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Fri, 17 Jan 2025 12:13:57 UTC
On 17.01.25 12:49, Liam Proven wrote: > On Thu, 16 Jan 2025 at 23:16, Vincent Miller <vrwmiller@gmail.com> wrote: >> >> The port is at 3.4.1. If I'm not mistaken the vulnerabilities are in 3.4.0. > > You _are_ mistaken. 3.4.0 was the version that fixed the issues. > > The most serious issue, CVSS 9.8, affects all versions since 3.2.7. > The other 5 affect all known versions. Is it correct that for this reason the FreeBSD rsync mirrors are unreachable at this time? Does anyone know when they will be back online? Kind regards Matthias