This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
[SECURITY] rsync: CVE-2014-9512
- From: Yaakov Selkowitz <yselkowitz at cygwin dot com>
- To: cygwin-apps at cygwin dot com
- Date: Thu, 28 Jan 2016 13:29:53 -0600
- Subject: [SECURITY] rsync: CVE-2014-9512
- Authentication-results: sourceware.org; auth=none
Jari,
A security fix for rsync has been made public:
https://bugzilla.redhat.com/show_bug.cgi?id=1293854
This is fixed in 3.1.2, but if you just want to patch 3.1.1 instead for now:
http://pkgs.fedoraproject.org/cgit/rpms/rsync.git/plain/rsync-3.1.1-symlink.patch?h=f23
Note that this patch requires proto.h to be regenerated before compiling.
--
Yaakov