Hi,
On Tue, 21 Jan 2025 17:39:37 +0000 "Chris Lamb" <la...@debian.org> wrote:
> Thank you for filing this. Thorsten, as the uploader of +deb11u2,
> could you have a first look at this? I've added an entry in
> dla-needed.txt so this work doesn't get lost — if you could claim
> that entry, that would be great.
On Wed, 22 Jan 2025 09:44:30 +0000 Samuel Henrique
<samuel...@debian.org> wrote:
Control: forwarded -1 https://github.com/RsyncProject/rsync/issues/722
There's a reproducer at https://github.com/RsyncProject/rsync/issues/722.
sudhackar confirmed Ubuntu is also affected.
I believe LTS is still vulnerable.
Any news? :)
Thorsten removed the entry from security-tracker:data/dla-needed.txt
after upstream inactivity, so I'm not sure how we should track this.
Cheers!
Sylvain Beucler
Debian LTS Team
