Publishing details

• Published on 2020-02-24
• Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Avital Ostromich

Changelog

rsync (3.1.1-3ubuntu1.3) xenial-security; urgency=medium

  * SECURITY UPDATE: improper pointer arithmetic might allow
    context-dependent attackers to have unspecified impact
    - debian/patches/CVE-2016-9840.patch: remove offset pointer optimization
      in inftrees.c.
    - CVE-2016-9840
  * SECURITY UPDATE: improper pointer arithmetic might allow
    context-dependent attackers to have unspecified impact
    - debian/patches/CVE-2016-9841.patch: use post-increment only in inffast.c.
    - CVE-2016-9841
  * SECURITY UPDATE: vectors involving left shifts of negative integers might
    allow context-dependent attackers to have unspecified impact
    - debian/patches/CVE-2016-9842_1.patch: avoid shifts of negative values in
      inflateMark().
    - debian/patches/CVE-2016-9842_2.patch: avoid casting an out-of-range
      value to long.
    - CVE-2016-9842
  * SECURITY UPDATE: vectors involving big-endian CRC calculation might allow
    context-dependent attackers to have unspecified impact
    - debian/patches/CVE-2016-9843.patch: avoid pre-decrement of pointer in
      big-endian CRC calculation.
    - CVE-2016-9843

 -- Avital Ostromich <email address hidden>  Thu, 13 Feb 2020 17:48:27 -0500

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el
• s390x

Built packages

• rsync fast, versatile, remote (and local) file-copying tool

Package files

• rsync_3.1.1-3ubuntu1.3.debian.tar.xz (28.0 KiB)
• rsync_3.1.1-3ubuntu1.3.dsc (1.6 KiB)
• rsync_3.1.1-3ubuntu1.3_amd64.deb (320.8 KiB)
• rsync_3.1.1-3ubuntu1.3_arm64.deb (292.0 KiB)
• rsync_3.1.1-3ubuntu1.3_armhf.deb (305.7 KiB)
• rsync_3.1.1-3ubuntu1.3_i386.deb (334.3 KiB)
• rsync_3.1.1-3ubuntu1.3_powerpc.deb (300.9 KiB)
• rsync_3.1.1-3ubuntu1.3_ppc64el.deb (338.2 KiB)
• rsync_3.1.1-3ubuntu1.3_s390x.deb (312.4 KiB)
• rsync_3.1.1.orig.tar.gz (869.3 KiB)