pool/rsync
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6 Commits 2 Branches 0 Tags
Commit Graph

6 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Angel Yankov
e822f7b8e9 - Update to 3.4.1 
* BUG FIXES:
    - fixed handling of -⁠H flag with conflict in internal flag values
    - fixed a user after free in logging of failed rename
    - fixed build on systems without openat()
    - removed dependency on alloca() in bundled popt
  * DEVELOPER RELATED:
    - fix to permissions handling in the developer release script
- Drop 705.patch, because now in upstream.

OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=134
 2025-01-17 15:38:05 +00:00
Angel Yankov
625a1eb982 rsync 3.4.1 
OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=133
 2025-01-17 11:02:06 +00:00
Angel Yankov
7c0bd59c11 * Add 705.patch 
* Drop rsync-gcc14.patch

OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=132
 2025-01-16 07:28:52 +00:00
Angel Yankov
abf54218bc - Backport patch from PR 705 to fix broken handling of hashes and 
hard links:
  705.patch

OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=131
 2025-01-15 14:56:55 +00:00
Angel Yankov
fefc4c8eaf - Update to 3.4 
* Bump to protocol 32
  Drop CVE patches:
  * Removed rsync-CVE-2024-12084-overflow-01.patch
  * Removed rsync-CVE-2024-12084-overflow-02.patch
  * Removed rsync-CVE-2024-12085.patch
  * Removed rsync-CVE-2024-12086_01.patch
  * Removed rsync-CVE-2024-12086_02.patch
  * Removed rsync-CVE-2024-12086_03.patch
  * Removed rsync-CVE-2024-12086_04.patch
  * Removed rsync-CVE-2024-12087_01.patch
  * Removed rsync-CVE-2024-12087_02.patch
  * Removed rsync-CVE-2024-12088.patch
  * Removed rsync-CVE-2024-12747.patch

OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=130
 2025-01-15 13:43:40 +00:00
Angel Yankov
04926b0b74 - Security update,CVE-2024-12747, bsc#1235475 race condition in handling symbolic links 
* Added rsync-CVE-2024-12747.patch

- Security update, fix multiple vulnerabilities:
  * CVE-2024-12084, bsc#1234100 - Heap Buffer Overflow in Checksum Parsing
  * CVE-2024-12085, bsc#1234101 - Info Leak via uninitialized Stack contents defeats ASLR
  * CVE-2024-12086, bsc#1234102 - Server leaks arbitrary client files
  * CVE-2024-12087, bsc#1234103 - Server can make client write files outside of destination directory using symbolic links
  * CVE-2024-12088, bsc#1234104 - --safe-links Bypass
  * Added rsync-CVE-2024-12084-overflow-01.patch
  * Added rsync-CVE-2024-12084-overflow-02.patch
  * Added rsync-CVE-2024-12085.patch
  * Added rsync-CVE-2024-12086_01.patch
  * Added rsync-CVE-2024-12086_02.patch
  * Added rsync-CVE-2024-12086_03.patch
  * Added rsync-CVE-2024-12086_04.patch
  * Added rsync-CVE-2024-12087_01.patch
  * Added rsync-CVE-2024-12087_02.patch
  * Added rsync-CVE-2024-12088.patch

OBS-URL: https://build.opensuse.org/package/show/network/rsync?expand=0&rev=129
 2025-01-15 08:07:45 +00:00