Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 14 Apr 2014 07:40:08 -0400
From: Marc Deslauriers <>
Subject: CVE Request: rsync denial of service


Ryan Finnie discovered that rsync 3.1.0 contains a denial of service issue when
attempting to authenticate using a nonexistent username. A remote attacker could
use this flaw to cause a denial of service via CPU consumption.

Bug reports:


Could a CVE please be assigned to this issue?



Marc Deslauriers
Ubuntu Security Engineer     |
Canonical Ltd.               |

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ