SUSE-SU-2025:4511-1

Опубликовано: 23 дек. 2025

Источник: suse-cvrf

Описание

Security update for rsync

This update for rsync fixes the following issues:

CVE-2025-10158: Fixed out-of-bounds array access via negative index (bsc#1254441)

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP7

rsync-3.2.7-150600.3.14.1

openSUSE Leap 15.6

rsync-3.2.7-150600.3.14.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20254511-1/
Link for SUSE-SU-2025:4511-1
https://lists.suse.com/pipermail/sle-security-updates/2025-December/023645.html
E-Mail link for SUSE-SU-2025:4511-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1254441
SUSE Bug 1254441
https://www.suse.com/security/cve/CVE-2025-10158/
SUSE CVE CVE-2025-10158 page

Описание

A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP7:rsync-3.2.7-150600.3.14.1

openSUSE Leap 15.6:rsync-3.2.7-150600.3.14.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-10158.html
CVE-2025-10158
https://bugzilla.suse.com/1254441
SUSE Bug 1254441

SUSE-SU-2025:4511-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP7

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-10158

Описание

Затронутые продукты

Ссылки