Mandrake Linux Security Advisory : rsync (MDKSA-2002:009)
Critical Nessus Plugin ID 13917
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionSebastian Krahmer of the SuSE Security Team performed an audit on the rsync tool and discovered that in several places signed and unsigned numbers were mixed, with the end result being insecure code. These flaws could be abused by remote users to write 0 bytes into rsync's memory and trick rsync into executing arbitrary code on the server.
It is recommended that all Mandrake Linux users update rsync immediately. As well, rsync server administrators should seriously consider making use of the 'use chroot', 'read only', and 'uid' options as these can significantly reduce the impact that security problems in rsync (or elsewhere) have on the server.
SolutionUpdate the affected rsync package.