Описание
ELSA-2025-0325: rsync security update (IMPORTANT)
[3.1.3-20]
- Resolves: RHEL-70157 - Info Leak via Uninitialized Stack Contents
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
rsync
3.1.3-20.el8_10
rsync-daemon
3.1.3-20.el8_10
Oracle Linux x86_64
rsync
3.1.3-20.el8_10
rsync-daemon
3.1.3-20.el8_10
Связанные CVE
Связанные уязвимости
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
A flaw was found in rsync which could be triggered when rsync compares ...