14 Jan
2025
14 Jan
'25
11:31 p.m.
Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI:
Two independent groups of researchers have identified a total of 6 vulnerabilities in rsync. In the most severe CVE, an attacker only requires anonymous read access to a rsync server, such as a public mirror, to execute arbitrary code on the machine the server is running on.
VG Markus [0] <https://www.openwall.com/lists/oss-security/2025/01/14/3>