[SECURITY] Fedora 40 Update: rsync-3.4.1-1.fc40

Rsync uses a reliable algorithm to bring remote and host files into sync very quickly. Rsync is fast because it just sends the differences in the files over the network instead of sending the complete files. Rsync is often used as a very powerful mirroring process or just as a more capable...

Fedora 40 : rsync (2025-b28759cb95)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b28759cb95 advisory. New version 3.4.1, a couple of fixes for the 3.4.0 release. Tenable has extracted the preceding description block directly from the Fedora security advisory...

CBL Mariner 2.0 Security Update: rsync (CVE-2024-12087)

The version of rsync installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12087 advisory. - A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option,...

CBL Mariner 2.0 Security Update: rsync (CVE-2024-12747)

The version of rsync installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12747 advisory. - A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symboli...

CBL Mariner 2.0 Security Update: rsync (CVE-2024-12086)

The version of rsync installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12086 advisory. - A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the...

CBL Mariner 2.0 Security Update: rsync (CVE-2024-12088)

The version of rsync installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12088 advisory. - A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a...

RHSA-2025:0637 Red Hat Security Advisory: rsync security update

Bulletin has no description...

RHEL 9 : rsync (RHSA-2025:0637)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:0637 advisory. The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only...

rsync: Info Leak via Uninitialized Stack Contents

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CLSA-2025-1737569565 rsync: Fix of CVE-2024-12085

CVE-2024-12085: fix to prevent information leak off the stack...

CLSA-2025-1737568622 rsync: Fix of CVE-2024-12085

CVE-2024-12085: fix to prevent information leak off the stack...

MGASA-2025-0019 Updated rsync packages fix security vulnerabilities

Heap buffer overflow in rsync due to improper checksum length handling. CVE-2024-12084 Info leak via uninitialized stack contents. CVE-2024-12085 Rsync server leaks arbitrary client files. CVE-2024-12086 Path traversal vulnerability in rsync. CVE-2024-12087 Rsync --safe-links option bypass leads ...

Updated rsync packages fix security vulnerabilities

Heap buffer overflow in rsync due to improper checksum length handling. CVE-2024-12084 Info leak via uninitialized stack contents. CVE-2024-12085 Rsync server leaks arbitrary client files. CVE-2024-12086 Path traversal vulnerability in rsync. CVE-2024-12087 Rsync --safe-links option bypass leads ...

Important: rsync

Issue Overview: A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data...

Important: rsync

Issue Overview: A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data...

CLSA-2025-1737463274 rsync: Fix of 2 CVEs

CVE-2024-12088: fix path traversal vulnerability by properly verifying symbolic link destinations - CVE-2024-12085: fix issue with checksum length manipulation leading to uninitialized memory leak...

CLSA-2025-1737464920 rsync: Fix of 2 CVEs

CVE-2024-12088: fix path traversal vulnerability by properly verifying symbolic link destinations - CVE-2024-12085: fix issue with checksum length manipulation leading to uninitialized memory leak...

CLSA-2025-1737464476 rsync: Fix of CVE-2024-12085

CVE-2024-12085: prevent leak of uninitialised stack data in hashsearch...

[SECURITY] Fedora 41 Update: rsync-3.4.1-1.fc41

Rsync uses a reliable algorithm to bring remote and host files into sync very quickly. Rsync is fast because it just sends the differences in the files over the network instead of sending the complete files. Rsync is often used as a very powerful mirroring process or just as a more capable...