CVE-2025-67901
CVE-2025-67901 affects openrsync up to version 0.5.0, used in OpenBSD up to 7.8 and elsewhere. The issue allows a client to trigger a server SIGSEGV by sending a zero-length block, caused by the unchecked relationship between p->rem and p->len. Public references come from OpenBSD/openrsync ...