Back to bug 1293854
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2015-12-23 09:39:00 UTC | Depends On | 1293856 | |
| Slawomir Czarko | 2016-01-04 07:29:53 UTC | CC | slawomir | |
| Adam Mariš | 2016-01-04 09:04:56 UTC | Blocks | 1295358 | |
| Andrej Nemec | 2016-01-22 08:05:12 UTC | Alias | CVE-2014-9512 | |
| Andrej Nemec | 2016-01-22 08:05:20 UTC | Summary | rsync: Transferring file outside destination path via just-sent symlink | CVE-2014-9512 rsync: Transferring file outside destination path via just-sent symlink |
| Andrej Nemec | 2016-01-27 14:53:18 UTC | CC | anemec | |
| Cedric Buissart | 2016-02-17 09:17:43 UTC | CC | cbuissar | |
| Cedric Buissart | 2016-02-17 15:25:19 UTC | Doc Text | It was discovered that rsync did not properly perform sanity checks on certain meta-information. By sending specially crafted meta-information, a remote attacker could possibly exploit this flaw to cause an rsync endpoint to write data to files outside of the expected destination path. | |
| Cedric Buissart | 2016-02-18 10:50:51 UTC | Whiteboard | impact=moderate,public=20151221,reported=20151222,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-22,rhel-5/rsync=affected,rhel-6/rsync=affected,rhel-7/rsync=affected,fedora-all/rsync=affected | impact=moderate,public=20151221,reported=20151222,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-22,rhel-5/rsync=wontfix,rhel-6/rsync=wontfix,rhel-7/rsync=wontfix,fedora-all/rsync=affected |
| Cedric Buissart | 2016-02-18 10:51:02 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2016-02-18 05:51:02 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:41:49 UTC | Whiteboard | impact=moderate,public=20151221,reported=20151222,source=gentoo,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,cwe=CWE-22,rhel-5/rsync=wontfix,rhel-6/rsync=wontfix,rhel-7/rsync=wontfix,fedora-all/rsync=affected |
Back to bug 1293854