A security problem exists in all versions of rsync prior to 2.6.1 that affects anyone running a read/write daemon without using a chrooted environment.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/33224/rsync.html
Source: https://packetstormsecurity.com/files/33224/rsync.html.html