Slackware 8.1 / 9.0 / 9.1 / current : rsync security update (SSA:2003-337-01)
High Nessus Plugin ID 18734
SynopsisThe remote Slackware host is missing a security update.
DescriptionRsync is a file transfer client and server. A security problem which may lead to unauthorized machine access or code execution has been fixed by upgrading to rsync-2.5.7. This problem only affects machines running rsync in daemon mode, and is easier to exploit if the non-default option 'use chroot = no' is used in the /etc/rsyncd.conf config file. Any sites running an rsync server should upgrade immediately.
SolutionUpdate the affected rsync package.