Lucene search
K

AZL-55691 CVE-2024-12084 affecting package rsync for versions less than 3.4.1-1

🗓️ 15 Jan 2025 15:15:10Reported by GoogleType 
osv
 osv
🔗 osv.dev👁 6 Views

Rsync daemon heap overflow due to attacker-controlled checksum lengths; sum2 writes out of bounds when max digest length exceeds 16 in rsync <3.4.1-1 (CVE-2024-12084).

Related
Refs
ReporterTitlePublishedViews
Family
FreeBSD
rsync -- Multiple security fixes
14 Jan 202500:00
freebsd
GithubExploit
Exploit for Heap-based Buffer Overflow in Samba Rsync
29 Jan 202520:44
githubexploit
GithubExploit
Exploit for Heap-based Buffer Overflow in Samba Rsync
24 Nov 202515:26
githubexploit
GithubExploit
Exploit for Heap-based Buffer Overflow in Samba Rsync
29 Jan 202520:44
githubexploit
ATTACKERKB
CVE-2024-12084
15 Jan 202515:15
attackerkb
AlpineLinux
CVE-2024-12084
15 Jan 202514:16
alpinelinux
ArchLinux
[ASA-202501-1] rsync: multiple issues
14 Jan 202500:00
archlinux
AstraLinux
Astra Linux – Vulnerability in rsync
11 Feb 202507:35
astralinux
Tenable Nessus
Azure Linux 3.0 Security Update: rsync (CVE-2024-12084)
10 Feb 202500:00
nessus
Tenable Nessus
Debian dsa-5843 : rsync - security update
14 Jan 202500:00
nessus
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

21 Apr 2026 04:35Current
7.6High risk
Vulners AI Score7.6
CVSS 3.19.8
EPSS0.72059
SSVC
6