SUSE-SU-2026:0005-1

Опубликовано: 02 янв. 2026

Источник: suse-cvrf

Описание

Security update for rsync

This update for rsync fixes the following issues:

CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441)

Список пакетов

SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

rsync-3.1.3-3.34.1

Ссылки

https://www.suse.com/support/update/announcement/2026/suse-su-20260005-1/
Link for SUSE-SU-2026:0005-1
https://lists.suse.com/pipermail/sle-security-updates/2026-January/023665.html
E-Mail link for SUSE-SU-2026:0005-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1254441
SUSE Bug 1254441
https://www.suse.com/security/cve/CVE-2025-10158/
SUSE CVE CVE-2025-10158 page

Описание

A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue.

Затронутые продукты

SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:rsync-3.1.3-3.34.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-10158.html
CVE-2025-10158
https://bugzilla.suse.com/1254441
SUSE Bug 1254441

SUSE-SU-2026:0005-1

Описание

Список пакетов

SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

Ссылки

Уязвимость: CVE-2025-10158

Описание

Затронутые продукты

Ссылки