Wind River Support Network

HomeDefectsLIN9-6273

Fixed

LIN9-6273 : Security Advisory - rsync - CVE-2018-5764

Created: Jan 30, 2018 Updated: Dec 3, 2018

Resolved Date: Mar 2, 2018

Found In Version: 9.0.0.13

Fix Version: 9.0.0.15

Severity: Standard

Applicable for: Wind River Linux 9

Component/s: Userspace

Description

The parse_arguments function in options.c in rsyncd in rsync before 3.1.3 does not prevent multiple --protect-args uses, which allows remote attackers to bypass an argument-sanitization protection mechanism.

https://nvd.nist.gov/vuln/detail/CVE-2018-5764

Other Downloads

Wind River Linux 9.0.0.15
Wind River Linux 9.0.0.16
Wind River Linux 9.0.0.17
Wind River Linux 9.0.0.18
Wind River Linux 9.0.0.19
Wind River Linux 9.0.0.20
Wind River Linux 9.0.0.21
Wind River Linux 9.0.0.22
Wind River Linux 9.0.0.23
Wind River Linux 9.0.0.24
Wind River Linux 9.0.0.25
Wind River Linux 9.0.0.26

CVEs

CVE-2018-5764