Slackware-14.2 ChangeLog (2022-08-15)

Mon Aug 15 20:23:47 UTC 2022

  • patches/packages/rsync-3.2.5-i586-1_slack14.2.txz
    Added some file-list safety checking that helps to ensure that a rogue
    sending rsync can't add unrequested top-level names and/or include recursive
    names that should have been excluded by the sender. These extra safety
    checks only require the receiver rsync to be updated. When dealing with an
    untrusted sending host, it is safest to copy into a dedicated destination
    directory for the remote content (i.e. don't copy into a destination
    directory that contains files that aren't from the remote host unless you
    trust the remote host).
    For more information, see:
    (* Security fix *)
  • news/2022/08/15/slackware-14.2-changelog.txt
  • Last modified: 5 months ago
  • by Giuseppe Di Terlizzi