Описание
librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| librsync | fixed | 1.0.0-1~exp1 | experimental | package |
| librsync | fixed | 2.0.2-1 | package | |
| librsync | ignored | buster | package | |
| librsync | ignored | stretch | package | |
| librsync | no-dsa | jessie | package | |
| librsync | no-dsa | wheezy | package | |
| librsync | no-dsa | squeeze | package |
Связанные уязвимости
ubuntu
больше 10 лет назад
librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack.
nvd
больше 10 лет назад
librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack.
github
больше 3 лет назад
librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack.
