lp:ubuntu/edgy-security/rsync

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

9. By Kees Cook on 2007-08-17

* SECURITY UPDATE: off-by-one memory overwrite in filename handling.
* sender.c: applied upstream fixes inline.
* References
  CVE-2007-4091

8. By Scott James Remnant (Canonical) on 2006-07-21

Add forgotten versioned-dependency on sysv-rc to get new update-rc.d
behaviour. Go me.

7. By Scott James Remnant (Canonical) on 2006-07-20

Remove stop links from rc0 and rc6

6. By Martin Pitt on 2006-06-29

Synchronize to Debian, only change left: LSB init script.

5. By Martin Pitt on 2006-05-05

* patches/xattrs.diff:
  - Fix buffer overflow with crafted extended attributes.
  - http://cvs.samba.org/cgi-bin/cvsweb/rsync/patches/xattrs.diff.diff?r1=1.23&r2=1.24
  - CVE-2006-2083
  - This patch is not applied by default, but it might affect people who
    manually apply it in custom build.

4. By Martin Pitt on 2005-11-15

Synchronize to Debian.

3. By Adam Conrad on 2005-07-09

Remove hardcoded mention of rsyncd.conf in init script (Ubuntu #9145)

2. By Paul Slootman <email address hidden> on 2005-05-10

* Fixed grave bug:
  replaced the Debian-specific patch to log.c with the upstream CVS version,
  as upstream changes conflict with the Debian patch, causing syslog logging
  (the default!) to fail, meaning that for most people the rsync as daemon
  doesn't work.
  This includes people using systemimager-server, as that generates the
  rsyncd.conf on the fly without a log file line, hence the rsync bug
  causes a total failure of that package.
  closes:#307923,#308428
* fixed the rsync.1 manpage, where cut&paste from a diff was not done
  correctly (the leading '+'s were still there).

1. By Paul Slootman <email address hidden> on 2005-05-10

Import upstream version 2.6.4