Lucene search
K

22 matches found

RedHat Linux
RedHat Linux
added 2026/06/11 1:41 a.m.6 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References7
CloudLinux
CloudLinux
added 2026/05/30 10:23 a.m.10 views

rsync: Fix of CVE-2026-41035

CVE-2026-41035: fix use-after-free in receivexattr by using tempxattr.count instead of the stale count in qsort...

7.8CVSS5.5AI score0.00393EPSS
Exploits1
OSV
OSV
added 2026/05/29 2:28 p.m.4 views

CLSA-2026-1780062671 Fix CVE(s): CVE-2026-41035

SECURITY UPDATE: receiver use-after-free in receivexattr via a wire-supplied xattr count passed to qsort: - debian/patches/els/0007-CVE-2026-41035.patch: sort tempxattr.count stored items instead of the untrusted wire count. - CVE-2026-41035...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References1
OSV
OSV
added 2026/05/29 11:39 a.m.4 views

CLSA-2026-1780054763 Fix CVE(s): CVE-2026-41035

SECURITY UPDATE: use-after-free in receivexattr - debian/patches/CVE-2026-41035.patch: replace stale local 'count' with tempxattr.count in the qsort call inside receivexattr, so the sort uses the live size of the rebuilt xattr items list; victim must run rsync with -X / --xattrs - CVE-2026-41035...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2026/05/26 5:39 a.m.14 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00393EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/05/26 4:24 a.m.14 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00393EPSS
Exploits1References7
OSV
OSV
added 2026/05/19 12:11 a.m.6 views

CLSA-2026-1779131668 rsync: Fix of CVE-2026-41035

CVE-2026-41035: receiver use-after-free in receivexattr via untrusted xattr count passed to qsort...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References1
OSV
OSV
added 2026/05/03 9:56 a.m.4 views

OESA-2026-2150 rsync security update

Rsync is an open source utility that provides fast incremental file transfer. It uses the "rsync algorithm" which provides a very fast method for bringing remote files into sync. It does this by sending just the differences in the files across the link, without requiring that both sets of files a...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References2
OSV
OSV
added 2026/04/21 5:13 p.m.7 views

CLSA-2026-1776791634 rsync: Fix of 3 CVEs

CVE-2017-16548: fix heap overread in receivexattr by enforcing trailing NUL on received xattr names - CVE-2017-17434: sanitize xname in readndxandattrs and check daemon filter against fnamecmp in recvfiles - CVE-2018-5764: prevent client from resetting protectargs during the second parsearguments...

9.8CVSS6.8AI score0.06337EPSS
Exploits0References1
OSV
OSV
added 2026/04/21 11:9 a.m.10 views

CLSA-2026-1776769741 rsync: Fix of 3 CVEs

CVE-2017-16548: fix heap overread in receivexattr by enforcing trailing NUL on received xattr names - CVE-2017-17434: sanitize xname in readndxandattrs and check daemon filter against fnamecmp in recvfiles - CVE-2018-5764: prevent client from resetting protectargs during the second parsearguments...

9.8CVSS6.8AI score0.06337EPSS
Exploits0References1
OSV
OSV
added 2026/04/18 2:40 a.m.4 views

MGASA-2026-0101 Updated rsync packages fix security vulnerability

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References5
Microsoft CVE
Microsoft CVE
added 2026/04/17 8:2 a.m.9 views

In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X (aka --xattrs). On Linux, many (but not all) common configurations are vulnerable. Non-Linux platforms are more widely vulnerable.

...

7.8CVSS5.8AI score0.00393EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/04/17 6:8 a.m.6 views

CVE-2026-41035

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS5.9AI score0.00393EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2026/04/16 11:27 p.m.5 views

SUSE CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.2CVSS5.7AI score0.00393EPSS
Exploits1References19
EUVD
EUVD
added 2026/04/16 9:31 a.m.4 views

EUVD-2026-23215

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.4CVSS5.8AI score0.00393EPSS
Exploits1References4
Snyk
Snyk
added 2026/04/16 8:37 a.m.4 views

Improper Handling of Length Parameter Inconsistency

Overview Affected versions of this package are vulnerable to Improper Handling of Length Parameter Inconsistency in the receivexattr function when it relies on an untrusted length value during a qsort call. An attacker can achieve unauthorized access to sensitive information, modify data, or caus...

7.8CVSS5.4AI score0.00393EPSS
Exploits1References2
NVD
NVD
added 2026/04/16 7:16 a.m.5 views

CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.8CVSS0.00393EPSS
Exploits1References28
Cvelist
Cvelist
added 2026/04/16 6:53 a.m.46 views

CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.4CVSS0.00393EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/16 6:53 a.m.5 views

CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.4CVSS5.8AI score0.00393EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/04/16 6:53 a.m.4 views

CVE-2026-41035

In rsync 3.0.1 through 3.4.1, receivexattr relies on an untrusted length value during a qsort call, leading to a receiver use-after-free. The victim must run rsync with -X aka --xattrs. On Linux, many but not all common configurations are vulnerable. Non-Linux platforms are more widely vulnerable...

7.8CVSS5.7AI score0.00393EPSS
Exploits1References28
Rows per page
Query Builder