Koozali.org: home of the SME Server
Contribs.org Forums => Koozali SME Server 10.x Contribs => Topic started by: Gary Douglas on September 02, 2022, 01:24:01 PM
-
Updated an AFFA box with this morning's updates, it broke AFFA at the rsync phase.
Error (1389): Couldn't open /var/affa/svr/scheduled.running/home/e-smith/db/affa-rpmlist
---> Package rsync.x86_64 0:3.1.2-10.el7 will be updated
---> Package rsync.x86_64 0:3.1.2-11.el7_9 will be an update
yum downgrade rsync has it working again. I will do further testing before raising a bug
-
Looks like this is by design, not a bug.
%changelog
* Tue Aug 16 2022 Michal Ruprich <mruprich@redhat.com> - 3.1.2-11
- Resolves: #2111170 - remote arbitrary files write inside the directories of connecting peers
You are not authorized to access bug #2111170.
-
seems related to that
https://nvd.nist.gov/vuln/detail/CVE-2022-29154
need to read the patch from source rpm to understand the changes and how to proceed. please open a bug
-
https://github.com/WayneD/rsync/commit/b7231c7d02cfb65d291af74ff66e7d8c507ee871
-
As per my comment here you can probably get aorund this by disabling the RPMCheck by setting this in your config
RPMCHeck=no
https://bugs.koozali.org/show_bug.cgi?id=12165#c7
-
Ahhhh no.
I can see another issue with backup locations. Think that is compounding some permissions issues that are at the root of it.
Hard work on the brain cells.
In the meantime if you hit this I suggest you don't upgrade your affa box for the time being.
I suspect many won't realise that data hasn't been saved :-(
-
See this for more on the subject:
https://forums.koozali.org/index.php/topic,54886.0.html