Skip to the Main Content

Note:These pages make extensive use of the latest XHTML and CSS Standards. They ought to look great in any standards-compliant modern browser. Unfortunately, they will probably look horrible in older browsers, like Netscape 4.x and IE 4.x. Moreover, many posts use MathML, which is, currently only supported in Mozilla. My best suggestion (and you will thank me when surfing an ever-increasing number of sites on the web which have been crafted to use the new standards) is to upgrade to the latest version of your browser. If that's not possible, consider moving to the Standards-compliant and open-source Mozilla browser.

December 5, 2003

Buffer Overflow in Rsync 2.5.6

Apparently, there’s a heap overflow vulnerability in rsync 2.5.6 (the version that ships with Panther) and earlier. This is a serious threat, if you run rsync in daemon mode. Upgrading to 2.5.7 fixes the problem.

Between that and the local root hole in the Linux kernel, Linux folks have been busy lately. (Point of amusement: note the PGP signature on that Advisory!)

Posted by distler at December 5, 2003 9:04 AM

TrackBack URL for this Entry:

0 Comments & 0 Trackbacks

Post a New Comment