[Bug 247795] net/rsync: Update to 3.2.2
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Jul 6 07:30:03 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=247795
Bug ID: 247795
Summary: net/rsync: Update to 3.2.2
Product: Ports & Packages
Version: Latest
Hardware: Any
URL: https://download.samba.org/pub/rsync/NEWS#3.2.2
OS: Any
Status: New
Keywords: needs-patch, needs-qa, security
Severity: Affects Only Me
Priority: ---
Component: Individual Port(s)
Assignee: rodrigo at FreeBSD.org
Reporter: koobs at FreeBSD.org
Assignee: rodrigo at FreeBSD.org
Flags: maintainer-feedback?(rodrigo at FreeBSD.org)
Note:
3.2.0 includes security updates, relevant if rsync uses the bundled zlib
library (and not system (ports version)):
Various zlib fixes, including security fixes for CVE-2016-9843,
CVE-2016-9842,
CVE-2016-9841, and CVE-2016-9840.
3.1.3 contains security fixes too:
Fixed a buffer overrun in the protocol's handling of xattr names and ensure
that the received name is null terminated.
Fix an issue with ‑‑protect-args where the user could specify the arg in the
protected-arg list and short-circuit some of the arg-sanitizing code.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list