VUL-0: rsync heap corruption
Specially crafted requests could cause a memory corruption
on the receiving side of an rsync transfer (client side or
server that allows to push) (CVE-2011-1097).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4292
Fixed bugs
bnc#684387
VUL-0: rsync heap corruption
CVE#CVE-2011-1097
rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via malformed data.
