Evgeny Legerov discovered that zlib incorrectly handled memory when performing certain inflate operations. An attacker could use this issue to cause rsync to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "rsync": "3.1.1-3ubuntu1.3+esm2" } ] }
{ "availability": "No subscription required", "binaries": [ { "rsync": "3.1.2-2.1ubuntu1.5" } ] }
{ "availability": "No subscription required", "binaries": [ { "rsync": "3.1.3-8ubuntu0.4", "rsync-dbgsym": "3.1.3-8ubuntu0.4" } ] }