CVE-2007-4091 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2007-4091 Interim 1 16 2025-11-05T06:19:44Z current 2021-05-30T12:39:46Z 2025-11-05T06:19:44Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2007-4091 Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the f_name function. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ZX2KTXC6GVF5TVKBSPI7N5XOUJHBJV63/#ZX2KTXC6GVF5TVKBSPI7N5XOUJHBJV63 E-Mail link for SUSE-SR:2007:017 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 16.0 SUSE Linux Micro 6.0 SUSE Linux Micro 6.1 openSUSE Tumbleweed rsync-3.0.4-2.33.82 rsync-3.0.4-2.38.1 rsync-3.0.4-2.47.28 rsync-3.2.3-2.6 rsync-3.2.7-3.8 rsync-3.3.0-slfo.1.1_1.2 rsync-3.4.1-160000.2.3 rsync-3.0.4-2.33.82 as a component of SUSE Linux Enterprise Server 11 SP1 rsync-3.0.4-2.38.1 as a component of SUSE Linux Enterprise Server 11 SP2 rsync-3.0.4-2.47.28 as a component of SUSE Linux Enterprise Server 11 SP3 rsync-3.0.4-2.47.28 as a component of SUSE Linux Enterprise Server 11 SP4 rsync-3.4.1-160000.2.3 as a component of SUSE Linux Enterprise Server 16.0 rsync-3.2.7-3.8 as a component of SUSE Linux Micro 6.0 rsync-3.3.0-slfo.1.1_1.2 as a component of SUSE Linux Micro 6.1 rsync-3.2.3-2.6 as a component of openSUSE Tumbleweed Multiple off-by-one errors in the sender.c in rsync 2.6.9 might allow remote attackers to execute arbitrary code via directory names that are not properly handled when calling the f_name function. CVE-2007-4091 SUSE Linux Enterprise Server 11 SP1:rsync-3.0.4-2.33.82 SUSE Linux Enterprise Server 11 SP2:rsync-3.0.4-2.38.1 SUSE Linux Enterprise Server 11 SP3:rsync-3.0.4-2.47.28 SUSE Linux Enterprise Server 11 SP4:rsync-3.0.4-2.47.28 SUSE Linux Enterprise Server 16.0:rsync-3.4.1-160000.2.3 SUSE Linux Micro 6.0:rsync-3.2.7-3.8 SUSE Linux Micro 6.1:rsync-3.3.0-slfo.1.1_1.2 openSUSE Tumbleweed:rsync-3.2.3-2.6 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P