Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CACYkhxjVF_VQZL9TCXPoLC309RxE3-gsxKNeWFp2OACSMq9q5A@mail.gmail.com>
Date: Sat, 11 Apr 2015 12:04:58 +1000
From: Michael Samuel <mik@...net.net>
To: mancha <mancha1@...o.com>
Cc: oss-security@...ts.openwall.com
Subject: Re: Re: [CVE Requests] rsync and librsync collisions

On 11 April 2015 at 06:19, mancha <mancha1@...o.com> wrote:
>> * Dne Thursday 18. September 2014, 04:30:22 [CEST] Michael Samuel napsal:
>> > Ok, for rsync you can download colliding blocks (and a brief description) here:
>> >
>> > https://github.com/therealmik/rsync-collision

> The last time this was discussed it was suggested to the reporter that a
> fully working PoC be posted so the impact (or lack thereof) to rsync
> might be evaluated.
>
> Unless I missed it, this hasn't happened.

I reported it upstream with full working PoC

Regards,
  Michael

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.