Описание
ELSA-2025-0324: rsync security update (IMPORTANT)
[3.2.3-20.1]
- Resolves: RHEL-72495 - Info Leak via Uninitialized Stack Contents
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
rsync
3.2.3-20.el9_5.1
rsync-daemon
3.2.3-20.el9_5.1
Oracle Linux x86_64
rsync
3.2.3-20.el9_5.1
rsync-daemon
3.2.3-20.el9_5.1
Связанные CVE
Связанные уязвимости
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
A flaw was found in rsync which could be triggered when rsync compares ...