FreeBSD, Inc. Information for VU#325603

Integer overflow vulnerability in rsync

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

rsync is included as a third-party "port" in the FreeBSD system. A fix was committed to the FreeBSD ports collection CVS repository on 2003-12-04. FreeBSD users who have installed the rsync port are encouraged to update their ports tree and reinstall with the patched version.

If you have feedback, comments, or additional information about this vulnerability, please send us email.