diff options
| author | Sheila Aman <sheila@vulpine.house> | 2021-07-27 11:58:20 +0000 |
|---|---|---|
| committer | Sheila Aman <sheila@vulpine.house> | 2021-07-27 11:58:20 +0000 |
| commit | 1349e0e9fcaffb78596b7aa2eaeba436f6949318 (patch) | |
| tree | fe0330b960b3be8358c5648490ac29bd9cec401e /system/rsync/CVE-2020-14387.patch | |
| parent | 0802fb7eecef74b8858ca0ddc653555fce360c7a (diff) | |
| download | packages-1349e0e9fcaffb78596b7aa2eaeba436f6949318.tar.gz packages-1349e0e9fcaffb78596b7aa2eaeba436f6949318.tar.bz2 packages-1349e0e9fcaffb78596b7aa2eaeba436f6949318.tar.xz packages-1349e0e9fcaffb78596b7aa2eaeba436f6949318.zip | |
system/rsync: upgrade to 3.2.3
Diffstat (limited to 'system/rsync/CVE-2020-14387.patch')
| -rw-r--r-- | system/rsync/CVE-2020-14387.patch | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/system/rsync/CVE-2020-14387.patch b/system/rsync/CVE-2020-14387.patch new file mode 100644 index 000000000..7ed5e7a48 --- /dev/null +++ b/system/rsync/CVE-2020-14387.patch @@ -0,0 +1,21 @@ +From: Matt McCutchen <matt@mattmccutchen.net> +Date: Wed, 26 Aug 2020 16:16:08 +0000 (-0400) +Subject: rsync-ssl: Verify the hostname in the certificate when using openssl. +X-Git-Url: http://git.samba.org/?p=rsync.git;a=commitdiff_plain;h=c3f7414;hp=4c4fce51072c9189cfb11b52aa54fed79f5741bd + +rsync-ssl: Verify the hostname in the certificate when using openssl. +--- + +diff --git a/rsync-ssl b/rsync-ssl +index 8101975a..46701af1 100755 +--- a/rsync-ssl ++++ b/rsync-ssl +@@ -129,7 +129,7 @@ function rsync_ssl_helper { + fi + + if [[ $RSYNC_SSL_TYPE == openssl ]]; then +- exec $RSYNC_SSL_OPENSSL s_client $caopt $certopt -quiet -verify_quiet -servername $hostname -connect $hostname:$port ++ exec $RSYNC_SSL_OPENSSL s_client $caopt $certopt -quiet -verify_quiet -servername $hostname -verify_hostname $hostname -connect $hostname:$port + elif [[ $RSYNC_SSL_TYPE == gnutls ]]; then + exec $RSYNC_SSL_GNUTLS --logfile=/dev/null $gnutls_cert_opt $gnutls_opts $hostname:$port + else |