Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 10 Apr 2015 21:40:17 -0600
From: Kurt Seifried <>
To:, Vitezslav Cizek <>
Subject: Re: Re: [CVE Requests] rsync and librsync collisions

If you'd like Red Hat can:

1) handle disclosure coordination (like we do for OpenSSL)


2) handle patching/etc, we ship rsync so this is obviously of interest
to us.

Contact if you want and either myself or a coworker
will handle this. Thanks!

On 04/10/2015 08:06 PM, Michael Samuel wrote:
> Hi,
> On 10 April 2015 at 19:26, Vitezslav Cizek <> wrote:
>> Was there any further progress with the rsync upstream?
>> Are they planning to address this issue or is there no interest?
> No further progress with upstream, it's possible that rsync is abandoned.
> Regards,
>   Michael

Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

Download attachment "signature.asc" of type "application/pgp-signature" (837 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ