RLSA-2025:7050

Опубликовано: 04 окт. 2025

Источник: rocky

Оценка: Moderate

Описание

Moderate: rsync security update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.

Security Fix(es):

rsync: Path traversal vulnerability in rsync (CVE-2024-12087)
rsync: --safe-links option bypass leads to path traversal (CVE-2024-12088)
rsync: Race Condition in rsync Handling Symbolic Links (CVE-2024-12747)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 9 Release Notes linked from the References section.

Затронутые продукты

Rocky Linux 9

Наименование	Архитектура	Релиз	RPM
rsync	x86_64	3.el9	rsync-3.2.5-3.el9.x86_64.rpm

Показывать по

Связанные CVE

CVE-2024-12087

CVE-2024-12088

CVE-2024-12747

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2330672
Red Hat - 2330672
https://bugzilla.redhat.com/show_bug.cgi?id=2330676
Red Hat - 2330676
https://bugzilla.redhat.com/show_bug.cgi?id=2332968
Red Hat - 2332968

Связанные уязвимости

RLSA-2025:2600

rocky

8 месяцев назад

Moderate: rsync security update

ELSA-2025-7050

oracle-oval

7 месяцев назад

ELSA-2025-7050: rsync security update (MODERATE)

ELSA-2025-2600

oracle-oval

9 месяцев назад

ELSA-2025-2600: rsync security update (MODERATE)

SUSE-SU-2025:0166-1

suse-cvrf

11 месяцев назад

Security update for rsync

SUSE-SU-2025:0165-1