Lucene search
K

90 matches found

Tenable Nessus
Tenable Nessus
added 2025/01/14 12:0 a.m.7 views

Debian dla-4015 : rsync - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4015 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4015-2 [email protected] https://www.debian.org/lts/security/...

5.5AI score
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:15 p.m.24 views

K5165: rsync directory traversal vulnerability CAN-2004-0792

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

6.4CVSS6.3AI score0.02317EPSS
Exploits0
Oracle linux
Oracle linux
added 2022/11/15 12:0 a.m.58 views

rsync security and enhancement update

3.1.3-19 - Resolves: 2116668 - zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field 3.1.3-18 - Resolves: 2111175 - remote arbitrary files write inside the directories of connecting peers 3.1.3-17 - Related: 2043753 - New option should...

9.8CVSS2.7AI score0.1593EPSS
Exploits1
OSV
OSV
added 2022/08/25 9:21 p.m.5 views

MGASA-2022-0302 Updated rsync packages fix security vulnerability

An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A...

7.4CVSS7.5AI score0.01659EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/08/24 8:2 p.m.40 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.4CVSS7.3AI score0.01659EPSS
Exploits1References2
OSV
OSV
added 2022/08/19 11:4 a.m.6 views

OESA-2022-1853 rsync security update

Rsync is an open source utility that provides fast incremental file transfer. It uses the "rsync algorithm" which provides a very fast method for bringing remote files into sync. It does this by sending just the differences in the files across the link, without requiring that both sets of files a...

9.8CVSS8.3AI score0.1593EPSS
Exploits1References2
OSV
OSV
added 2021/11/30 12:0 a.m.25 views

DLA-2833-1 rsync - security update

Bulletin has no description...

7.5CVSS6.8AI score0.06337EPSS
Exploits0
EUVD
EUVD
added 2019/02/06 7:0 p.m.4 views

EUVD-2019-13103

Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands...

9.8CVSS9.4AI score0.04699EPSS
Exploits3References12
OSV
OSV
added 2018/01/17 7:32 a.m.10 views

SUSE-SU-2018:0117-1 Security update for rsync

This update for rsync fixes the following issues: Security issues fixed: - CVE-2017-17434: The daemon in rsync did not check for fnamecmp filenames in the daemonfilterlist data structure in the recvfiles function in receiver.c and also did not apply the sanitizepaths protection mechanism to...

9.8CVSS7.7AI score0.05163EPSS
Exploits0References7
OSV
OSV
added 2018/01/17 7:31 a.m.10 views

SUSE-SU-2018:0118-1 Security update for rsync

This update for rsync fixes several issues. These security issues were fixed: - CVE-2017-17434: The daemon in rsync did not check for fnamecmp filenames in the daemonfilterlist data structure in the recvfiles function in receiver.c and also did not apply the sanitizepaths protection mechanism to...

9.8CVSS7.9AI score0.05163EPSS
Exploits0References9
OSV
OSV
added 2017/12/17 12:0 a.m.36 views

DSA-4068-1 rsync - security update

Bulletin has no description...

9.8CVSS7.1AI score0.05163EPSS
Exploits0
OSV
OSV
added 2016/07/25 9:14 a.m.7 views

SUSE-SU-2016:1866-1 Security update for rsync

rsync was updated to fix one security issue. - CVE-2014-9512: rsync allowed remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path bsc915410...

6.4CVSS6.4AI score0.06499EPSS
Exploits1References3
OSV
OSV
added 2016/01/20 8:59 a.m.8 views

SUSE-SU-2016:0176-1 Security update for rsync

This update for rsync fixes two security issues: - CVE-2014-8242: Checksum collisions leading to a denial of service bsc900914 - CVE-2014-9512: Malicious servers could send files outside of the transferred directory bsc915410...

6.4CVSS6.2AI score0.06499EPSS
Exploits1References5
OSV
OSV
added 2016/01/19 7:35 p.m.10 views

SUSE-SU-2016:0173-1 Security update for rsync

This update for rsync fixes two security issues and two non-security bugs. The following vulnerabilities were fixed: - CVE-2014-8242: Checksum collisions leading to a denial of service bsc900914 - CVE-2014-9512: Malicious servers could send files outside of the transferred directory bsc915410 The...

6.4CVSS6.9AI score0.06499EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.19 views

Slackware: Security Advisory (SSA:2004-285-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.5AI score0.02317EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2011/07/21 9:22 a.m.42 views

Moderate: Red Hat Security Advisory: rsync security, bug fix, and enhancement update

An updated rsync package that fixes one security issue, several bugs, and adds enhancements is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...

10CVSS5.8AI score0.05442EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2007/12/01 6:46 a.m.34 views

CVE-2007-6199

rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy...

9.3CVSS7.2AI score0.04136EPSS
Exploits0References3
Slackware Linux
Slackware Linux
added 2004/10/12 7:33 a.m.19 views

[slackware-security] rsync

New rsync 2.6.3 packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to a fix security issue when rsync is run as a non-chrooted server. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database:...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2004/09/01 6:54 p.m.27 views

Moderate: Red Hat Security Advisory: rsync security update

An updated rsync package that fixes a path sanitizing bug is now available. The rsync program synchronizes files over a network. Versions of rsync up to and including version 2.6.2 contain a path sanitization issue. This issue could allow an attacker to read or write files outside of the rsync...

6.4CVSS5.7AI score0.02317EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.16 views

Fedora Core 1 : rsync-2.5.7-5.fc1.1 (2004-268)

This update backports a security fix to a path-sanitizing flaw that affects rsync when it is used in daemon mode without also using chroot. For more information see http://samba.org/rsync/securityaug04 Note that Tenable Network Security has extracted the preceding description block directly from...

5.5AI score
Exploits0References2
Rows per page
Query Builder