ELSA-2025-7050

ELSA-2025-7050 - rsync security update

Type:SECURITY
Impact:MODERATE
Release Date:2025-05-16

Description


[3.2.5-3]
- Resolves: RHEL-70265 - Rebase rsync to 3.2.5

[3.2.5-2]
- Resolves: RHEL-70158 - Info Leak via Uninitialized Stack Contents
- Resolves: RHEL-70208 - Path traversal vulnerability in rsync
- Resolves: RHEL-70210 - --safe-links option bypass leads to path traversal
- Resolves: RHEL-71657 - Race Condition in rsync Handling Symbolic Links

[3.2.3-21]
- Resolves: RHEL-70265 - Rebase rsync to 3.2.5
- Resolves: RHEL-67142 - Wrong progress reported by rsync when using copy-devices
- Resolves: RHEL-29340 - Slowness in rsync due to extra validation steps.
- Resolves: RHEL-18216 - rysnc script /usr/share/doc/rsync/support/rrsync is unsecure


Related CVEs


CVE-2024-12088
CVE-2024-12087
CVE-2024-12747

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) rsync-3.2.5-3.el9.src.rpma67ee0842c4a531c045a5a0de72a1df18e7d24846224903cb3b30716d0dc544d-ol9_aarch64_appstream
rsync-3.2.5-3.el9.src.rpma67ee0842c4a531c045a5a0de72a1df18e7d24846224903cb3b30716d0dc544d-ol9_aarch64_baseos_latest
rsync-3.2.5-3.el9.src.rpma67ee0842c4a531c045a5a0de72a1df18e7d24846224903cb3b30716d0dc544d-ol9_aarch64_u6_baseos_base
rsync-3.2.5-3.el9.aarch64.rpm3af88b5a5e3019ebcea99800804f033986c5917c08db2125bca5dad19e1f50dd-ol9_aarch64_baseos_latest
rsync-3.2.5-3.el9.aarch64.rpm3af88b5a5e3019ebcea99800804f033986c5917c08db2125bca5dad19e1f50dd-ol9_aarch64_u6_baseos_base
rsync-daemon-3.2.5-3.el9.noarch.rpme2c01df022dfccf8c2e0784001975741eeee382a081e649b5adc2986b19998ba-ol9_aarch64_appstream
rsync-rrsync-3.2.5-3.el9.noarch.rpm00f66c8a4526b7c91f01fed18590cbd8162258415630cfd17897ed7b0261f30d-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) rsync-3.2.5-3.el9.src.rpma67ee0842c4a531c045a5a0de72a1df18e7d24846224903cb3b30716d0dc544d-ol9_x86_64_appstream
rsync-3.2.5-3.el9.src.rpma67ee0842c4a531c045a5a0de72a1df18e7d24846224903cb3b30716d0dc544d-ol9_x86_64_baseos_latest
rsync-3.2.5-3.el9.src.rpma67ee0842c4a531c045a5a0de72a1df18e7d24846224903cb3b30716d0dc544d-ol9_x86_64_u6_baseos_base
rsync-3.2.5-3.el9.x86_64.rpm94f78633ef51cd096ee1953bccf32cf0669be7b07331f18c20f1eb6ff372c79c-ol9_x86_64_baseos_latest
rsync-3.2.5-3.el9.x86_64.rpm94f78633ef51cd096ee1953bccf32cf0669be7b07331f18c20f1eb6ff372c79c-ol9_x86_64_u6_baseos_base
rsync-daemon-3.2.5-3.el9.noarch.rpme2c01df022dfccf8c2e0784001975741eeee382a081e649b5adc2986b19998ba-ol9_x86_64_appstream
rsync-rrsync-3.2.5-3.el9.noarch.rpm00f66c8a4526b7c91f01fed18590cbd8162258415630cfd17897ed7b0261f30d-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete