Linux command ’rsync‘ 3.2.5 (unreleased) – added some file-list safety checking that helps to ensure that a rogue sending rsync can’t add unrequested top-level names and/or include recursive names that should have been excluded by the sender (CVE-2022-29154)
This entry was posted on Sonntag, August 7th, 2022 at 21:07 and is filed under Administration, Linux Solution, Security Solution. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.