TencentOS Server 4: rsync (TSSA-2025:0040)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0040 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

CVE-2025-40129

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdrstreamdecodeopaqueauth, zero-length checksum.len causes checksum.data to be set to NULL. This triggers a NPD when accessing checksum.data in gsskrb5verifymicv2...

CVE-2025-40129

CVE-2025-40129 affects the Linux kernel sunrpc subsystem. A null pointer dereference could occur in gss_krb5_verify_mic_v2 due to a zero-length checksum in xdr_stream_decode_opaque_auth(), where checksum.data could be NULL when checksum.len

Advisory ROSA-SA-2025-2976

Software: rsync 3.4.1 OS: ROSA-CHROME unaffected versions = rsync-3.4.1-1 affected versions rsync-3.4.1-1 CVE-ID: CVE-2024-12084 BDU-ID: 2025-00378 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the rsyncd daemon of the Rsync file transfer and synchronization utility is related to an operation...

rsync: Heap Buffer Overflow in Rsync due to Improper Checksum Length Handling

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths s2length in the code. When MAXDIGESTLEN exceeds the fixed SUMLENGTH 16 bytes, an attacker can write out of bounds in the sum2 buffer...

Astra Linux - уязвимость в rsync

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths s2length in the code. When MAXDIGESTLEN exceeds the fixed SUMLENGTH 16 bytes, an attacker can write out of bounds in the sum2 buffer...

rsync: Info Leak via Uninitialized Stack Contents

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

rsync: Info Leak via Uninitialized Stack Contents

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

CLSA-2025-1737993115 rsync: Fix of CVE-2024-12085

CVE-2024-12085: Fix issue where checksum length manipulation could leak uninitialized stack data during file comparison...

rsync: Info Leak via Uninitialized Stack Contents

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

rsync: Info Leak via Uninitialized Stack Contents

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

CLSA-2025-1737569495 Fix CVE(s): CVE-2024-12085

SECURITY UPDATE: possible information leak via checksum comparison - debian/patches/CVE-2024-12085.patch: fix issue with checksum length manipulation leading to uninitialized memory leak - CVE-2024-12085...

CLSA-2025-1737471454 Fix CVE(s): CVE-2024-12085

SECURITY UPDATE: possible information leak via checksum comparison - debian/patches/CVE-2024-12085.patch: fix issue with checksum length manipulation leading to uninitialized memory leak - CVE-2024-12085...

CLSA-2025-1737463274 rsync: Fix of 2 CVEs

CVE-2024-12088: fix path traversal vulnerability by properly verifying symbolic link destinations - CVE-2024-12085: fix issue with checksum length manipulation leading to uninitialized memory leak...

CLSA-2025-1737464920 rsync: Fix of 2 CVEs

CVE-2024-12088: fix path traversal vulnerability by properly verifying symbolic link destinations - CVE-2024-12085: fix issue with checksum length manipulation leading to uninitialized memory leak...

Rsync: heap buffer overflow in rsync due to improper checksum length handling

...

The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the rsyncd utility for transferring and synchronizing Rsync files involves a buffer overflow when processing the length of the checksum. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause service interruptions remotely...

SUSE CVE-2024-12084

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths s2length in the code. When MAXDIGESTLEN exceeds the fixed SUMLENGTH 16 bytes, an attacker can write out of bounds in the sum2 buffer...

SUSE CVE-2024-12085

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

AZL-55691 CVE-2024-12084 affecting package rsync for versions less than 3.4.1-1

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths s2length in the code. When MAXDIGESTLEN exceeds the fixed SUMLENGTH 16 bytes, an attacker can write out of bounds in the sum2 buffer...