Lucene search
K

2475 matches found

OSV
OSV
added 2026/05/27 7:56 a.m.5 views

SUSE-SU-2026:2083-1 Security update for rsync

This update for rsync fixes the following issues - CVE-2026-29518: Symlink-Race TOCTOU in Daemon bsc1264511. - CVE-2026-41035: count of entries mismatch can lead to a use-after-free bsc1262223. - CVE-2026-43617: Authorization Bypass via Hostname Resolution bsc1264515. - CVE-2026-43618: Integer...

9.8CVSS7AI score0.72059EPSS
Exploits9References27
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.12 views

RHEL 10 : rsync (RHSA-2026:20696)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20696 advisory. The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because...

7.8CVSS5.9AI score0.00393EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.11 views

SUSE SLED15 / SLES15 Security Update : rsync (SUSE-SU-2026:2038-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2038-1 advisory. This update for rsync fixes the following issues - CVE-2026-29518: Symlink-Race TOCTOU in Daemon bsc1264511. -...

9.8CVSS7AI score0.72059EPSS
Exploits9References43
CloudLinux
CloudLinux
added 2026/05/26 7:41 p.m.15 views

rsync: Fix of 2 CVEs

CVE-2026-43618: fix integer overflow in compressed-token decoding that could leak rsync process memory contents over the wire - CVE-2026-29518: fix TOCTOU race on parent path components in non-chroot daemon by routing receiver/sender opens, chmod, and chdir through per- component ONOFOLLOW secure...

8.1CVSS5.9AI score0.0078EPSS
Exploits0
OSV
OSV
added 2026/05/26 10:7 a.m.8 views

RHSA-2026:20604 Red Hat Security Advisory: rsync security update

Bulletin has no description...

7.4CVSS5.7AI score0.00393EPSS
Exploits1References16
OSV
OSV
added 2026/05/26 10:7 a.m.8 views

RHSA-2026:20603 Red Hat Security Advisory: rsync security update

Bulletin has no description...

7.4CVSS6.9AI score0.01761EPSS
Exploits2References21
OSV
OSV
added 2026/05/26 10:7 a.m.10 views

RHSA-2026:20602 Red Hat Security Advisory: rsync security update

Bulletin has no description...

7.4CVSS5.7AI score0.00393EPSS
Exploits1References16
OSV
OSV
added 2026/05/26 10:7 a.m.9 views

RHSA-2026:20601 Red Hat Security Advisory: rsync security update

Bulletin has no description...

7.4CVSS5.7AI score0.00393EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2026/05/26 9:24 a.m.17 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/05/26 9:24 a.m.8 views

rsync: Rsync: Out of bounds array access via negative index

An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue...

4.3CVSS5.7AI score0.00289EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/26 9:24 a.m.8 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00393EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/05/26 5:39 a.m.11 views

rsync: Rsync: Out of bounds array access via negative index

An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue...

4.3CVSS5.7AI score0.00289EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/26 5:39 a.m.15 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.1AI score0.01761EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2026/05/26 5:39 a.m.14 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00393EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/05/26 5:39 a.m.14 views

rsync: rsync server leaks arbitrary client files

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare wi...

6.8CVSS7.1AI score0.01761EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/26 5:23 a.m.12 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/05/26 5:23 a.m.13 views

rsync: Rsync: Out of bounds array access via negative index

An out of bounds read flaw has been discovered in rsync. A malicious client acting as the receiver of an rsync file transfer can trigger an OOB read via a negative array index. The rsync client requires at least read access to the remote rsync module to trigger the issue...

4.3CVSS5.7AI score0.00289EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/26 5:23 a.m.12 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00393EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/05/26 5:6 a.m.14 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS5.8AI score0.00393EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/05/26 5:6 a.m.10 views

rsync: Rsync: Use-after-free vulnerability in extended attribute handling

A flaw was found in rsync. When rsync is configured to handle extended attributes using the -X or --xattrs option, a remote attacker can exploit a use-after-free vulnerability. This occurs because the receivexattr function incorrectly processes an untrusted length value during a sorting operation...

7.8CVSS6AI score0.00393EPSS
Exploits1References7
Rows per page
Query Builder