Hi Wayne,
Thank you for your detailed answer and links.
Gratefully,
Mark Esler
On Wed, Aug 17, 2022 at 6:52 PM Wayne Davison wrote:
>
> On Wed, Aug 17, 2022 at 9:30 AM Mark Esler wrote:
>>
>> I am curious if CVE-2022-29154 affects rsync 3.2.3 or rrsync 3.2.3 and
>> earlier.
>
>
> The security
Greetings all,
I am curious if CVE-2022-29154 affects rsync 3.2.3 or rrsync 3.2.3 and
earlier. More specifically, I am curious if the commit to use
protected arguments as default [0] introduced the CVE (if so,
v3.2.4pre1 is not affected).
The protect args as default commit affects some of the