| Errata ID | 490 |
|---|---|
| Date | 2019-05-02 |
| Source package | rsync |
| Fixed in version | 3.1.2-1+deb9u2A~4.3.4.201904290751 |
| Description | This update addresses the following issues: * Out-of-bounds pointer arithmetic in inffast.c (CVE-2016-9841) * Undefined left shift of negative number (CVE-2016-9842) * Big-endian out-of-bounds pointer (CVE-2016-9843) |
| Additional notes | |
| CVE ID | CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 |
| UCS Bug number | #49361 |
