CVE-2011-1097

Published: Mar 30, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via malformed data.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

44088

third-party-advisory

x_refsource_SECUNIA

FEDORA-2011-4413

vendor-advisory

x_refsource_FEDORA

HPSBMU02752

vendor-advisory

x_refsource_HP

SSRT100802

vendor-advisory

x_refsource_HP

[rsync] 20110122 rsync -rcv printing out filenames when content identical

mailing-list

x_refsource_MLIST

SUSE-SR:2011:009

vendor-advisory

x_refsource_SUSE

RHSA-2011:0390

vendor-advisory

x_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=675036

x_refsource_CONFIRM

44071

third-party-advisory

x_refsource_SECUNIA

MDVSA-2011:066

vendor-advisory

x_refsource_MANDRIVA

FEDORA-2011-4427

vendor-advisory

x_refsource_FEDORA

FEDORA-2011-4389

vendor-advisory

x_refsource_FEDORA

ADV-2011-0793

vdb-entry

x_refsource_VUPEN

https://bugzilla.samba.org/show_bug.cgi?id=7936

x_refsource_CONFIRM

ADV-2011-0876

vdb-entry

x_refsource_VUPEN

ADV-2011-0873

vdb-entry

x_refsource_VUPEN

ADV-2011-0792

vdb-entry

x_refsource_VUPEN

http://rsync.samba.org/ftp/rsync/src/rsync-3.0.8-NEWS

x_refsource_CONFIRM

http://gitweb.samba.org/?p=rsync.git%3Ba=commit%3Bh=83b94efa6b60a3ff5eee4c5f7812c617a90a03f6

x_refsource_CONFIRM

1025256

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-1097

Description

Affected Products

References