Mandriva Update For Rsnapshot MDVA-2010:088 (rsnapshot) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Rsnapshot will automatically add --exclude=xxxx to the rsync options for backups of the filesystem on which the snapshot-root is located. This will be added to the rsync command-line AFTER the rsync_short_args and rsync_long_args, but BEFORE any backup-specific options. This means that the --exclude=xxxx will override whatever backup-specific excludes are defined. This can be a problem if the name of your snapshot-root is something which is common in many file names. This version resolves this problems.

Affected

rsnapshot on Mandriva Linux 2009.1, Mandriva Linux 2009.1/X86_64, Mandriva Linux 2010.0, Mandriva Linux 2010.0/X86_64

Severity

Classification

CVE CVE-2009-3620, CVE-2010-0410, CVE-2010-0622, CVE-2010-0623, CVE-2010-1088

CVSS	Base Score: 5.4 AV:N/AC:H/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:048 (epiphany)
Mandrake Security Advisory MDVSA-2009:046 (dia)
Mandrake Security Advisory MDVSA-2009:051 (libpng)
Mandrake Security Advisory MDVSA-2009:186 (firebird)
Mandrake Security Advisory MDVSA-2009:017 (kdebase)

Mandriva Update for rsnapshot MDVA-2010:088 (rsnapshot)

Take action and discover your vulnerabilities