Displaying 1 result from an estimated 1 matches for "allowdotdot".
2004 Aug 12
0
security hole in non-chroot rsync daemon
...led to the user
as link_stat errors (other rsync versions hide these errors from the
remote user).
FIXES
The best fix is to apply this one-word patch to the sanitize_path()
function in util.c:
--- orig/util.c 2004-04-27 12:59:37 -0700
+++ util.c 2004-08-11 23:37:27 -0700
@@ -743,7 +743,7 @@
allowdotdot = 1;
} else {
p += 2;
- if (*p == '/')
+ while (*p == '/')
p++;
if (sanp != start) {
/* back up sanp one level */
This bug is fixed in the CVS version of rsync, and will be released in
version 2.6.3 (which will begin release-testing soon).
One poten...