Debian Package Tracker

From: Thorsten Alteholz <debian@alteholz.de>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted rsync 3.0.9-4+deb7u1 (source amd64) into oldoldstable
Date: Fri, 22 Dec 2017 19:30:23 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 22 Dec 2017 19:03:02 +0100
Source: rsync
Binary: rsync
Architecture: source amd64
Version: 3.0.9-4+deb7u1
Distribution: wheezy-security
Urgency: high
Maintainer: Paul Slootman <paul@debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes:
 rsync (3.0.9-4+deb7u1) wheezy-security; urgency=high
 .
   * Non-maintainer upload by the Wheezy LTS Team.
   * CVE-2017-16548
     Enforce trailing \0 when receiving xattr name values
   * CVE-2017-17433
     Check fname in recv_files sooner
   * CVE-2017-17434
     Sanitize xname in read_ndx_and_attrs
     Check daemon filter against fnamecmp in recv_files()
Checksums-Sha1:
 4f41c9a4d87c11cfb657e5a6300c48612860ecaf 1846 rsync_3.0.9-4+deb7u1.dsc
 c64c8341984aea647506eb504496999fd968ddfc 792725 rsync_3.0.9.orig.tar.gz
 3bc84a9a159a3be8ac61d48c10c989ea4f171c66 23221 rsync_3.0.9-4+deb7u1.diff.gz
 f0898f9f476848cc09ff2305ce0fd8f26aeaf87f 368600 rsync_3.0.9-4+deb7u1_amd64.deb
Checksums-Sha256:
 fd83b12bdeeb08d4c5085d4396ec9a225e8121c1d14eb6a3e3cb89d776e9bbc4 1846 rsync_3.0.9-4+deb7u1.dsc
 30f10f8dd5490d28240d4271bb652b1da7a60b22ed2b9ae28090668de9247c05 792725 rsync_3.0.9.orig.tar.gz
 d12cb294f5fafb845430901afbe80721e444b269b3051958b070cd930a8b3324 23221 rsync_3.0.9-4+deb7u1.diff.gz
 75c530f7a6fc7e07cf99875e2d7ee2639332c6abb7f6c4af4fdb39d662439211 368600 rsync_3.0.9-4+deb7u1_amd64.deb
Files:
 9c7eba587c6e0de77bff77f35783b588 1846 net optional rsync_3.0.9-4+deb7u1.dsc
 5ee72266fe2c1822333c407e1761b92b 792725 net optional rsync_3.0.9.orig.tar.gz
 3278ae01cbace90af29c90efdb9a6dac 23221 net optional rsync_3.0.9-4+deb7u1.diff.gz
 3baccb112b8e45520bcf00b6fe5e434e 368600 net optional rsync_3.0.9-4+deb7u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=9vtr
-----END PGP SIGNATURE-----
News for package rsync
