ALT-PU-2022-4838-1

Package update librsync in branch p10_e2k

Version2.3.2-alt2

Task#0

Published2022-04-30

Max severityMEDIUM

Severity:

Closed issues (1)

MEDIUM5.8

librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack.

Published: 2015-10-26Modified: 2025-04-12

CVSS 2.0MEDIUM 5.8

CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:P/A:P

References

Closed bugs (2)

Просьба обновить librsync до последней версии

rdiff: Library does not support trace.