Date: Thu, 16 Jan 2025 18:16:38 -0500 From: Vincent Miller <vrwmiller@gmail.com> To: Martin <iio7@protonmail.com> Cc: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: Re: Serious rsync security issues Message-ID: <CAHzLAVFZzDKSnMDdzoLPOzY2q-8uNHPWutmvU97zXYS2vc9Zrw@mail.gmail.com> In-Reply-To: <wZLuLkwazDCoRo0ZPIV8GRbRz_nELAq5DJlWTSWe3bXHAwG1tNABShCEL8zfFkAh9viyhGnNf1QvPnJcpWRuTbqMUE8tRD5XURUWrUaoTVs=@protonmail.com> References: <wZLuLkwazDCoRo0ZPIV8GRbRz_nELAq5DJlWTSWe3bXHAwG1tNABShCEL8zfFkAh9viyhGnNf1QvPnJcpWRuTbqMUE8tRD5XURUWrUaoTVs=@protonmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--00000000000014f130062bdafd83 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Thu, Jan 16, 2025 at 6:02=E2=80=AFPM Martin <iio7@protonmail.com> wrote: > I am going to point this to the message on the Arch Linux site, > but it's all over the net. > > https://archlinux.org/news/critical-rsync-security-release-340/ > > I am wondering why the FreeBSD rsync package been updated yet? > The port is at 3.4.1. If I'm not mistaken the vulnerabilities are in 3.4.0. https://github.com/freebsd/freebsd-ports/commit/30167a14cc0602f041f7ace88b1= 0b09f102d69e0 --=20 Take care Vincent Miller --00000000000014f130062bdafd83 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable <div dir=3D"ltr"><div dir=3D"ltr"><br></div><br><div class=3D"gmail_quote g= mail_quote_container"><div dir=3D"ltr" class=3D"gmail_attr">On Thu, Jan 16,= 2025 at 6:02=E2=80=AFPM Martin <<a href=3D"mailto:iio7@protonmail.com">= iio7@protonmail.com</a>> wrote:<br></div><blockquote class=3D"gmail_quot= e" style=3D"margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-styl= e:solid;border-left-color:rgb(204,204,204);padding-left:1ex">I am going to = point this to the message on the Arch Linux site,<br> but it's all over the net.<br> <br> <a href=3D"https://archlinux.org/news/critical-rsync-security-release-340/"= rel=3D"noreferrer" target=3D"_blank">https://archlinux.org/news/critical-r= sync-security-release-340/</a><br> <br> I am wondering why the FreeBSD rsync package been updated yet?<br></blockqu= ote><div><br></div><div>=C2=A0</div><div>The port is at 3.4.1. If I'm n= ot mistaken the vulnerabilities are in 3.4.0.</div><div><br></div><div><a h= ref=3D"https://github.com/freebsd/freebsd-ports/commit/30167a14cc0602f041f7= ace88b10b09f102d69e0">https://github.com/freebsd/freebsd-ports/commit/30167= a14cc0602f041f7ace88b10b09f102d69e0</a>=C2=A0</div></div><div><br clear=3D"= all"></div><div><br></div><span class=3D"gmail_signature_prefix">-- </span>= <br><div dir=3D"ltr" class=3D"gmail_signature"><div dir=3D"ltr">Take care<b= r>Vincent Miller</div></div></div> --00000000000014f130062bdafd83--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAHzLAVFZzDKSnMDdzoLPOzY2q-8uNHPWutmvU97zXYS2vc9Zrw>