csaf_opensuse - opensuse-su-2025:14665-1

Vulnerability from csaf_opensuse

Published

2025-01-18 00:00

Modified

2025-01-18 00:00

Summary

rsync-3.4.1-1.1 on GA media

Notes

Title of the patch

rsync-3.4.1-1.1 on GA media

Description of the patch

These are all security issues fixed in the rsync-3.4.1-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2025-14665

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "moderate",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "rsync-3.4.1-1.1 on GA media",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "These are all security issues fixed in the rsync-3.4.1-1.1 package on the GA media of openSUSE Tumbleweed.",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "openSUSE-Tumbleweed-2025-14665",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_14665-1.json",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2024-12084 page",
            url: "https://www.suse.com/security/cve/CVE-2024-12084/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2024-12085 page",
            url: "https://www.suse.com/security/cve/CVE-2024-12085/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2024-12086 page",
            url: "https://www.suse.com/security/cve/CVE-2024-12086/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2024-12087 page",
            url: "https://www.suse.com/security/cve/CVE-2024-12087/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2024-12088 page",
            url: "https://www.suse.com/security/cve/CVE-2024-12088/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2024-12747 page",
            url: "https://www.suse.com/security/cve/CVE-2024-12747/",
         },
      ],
      title: "rsync-3.4.1-1.1 on GA media",
      tracking: {
         current_release_date: "2025-01-18T00:00:00Z",
         generator: {
            date: "2025-01-18T00:00:00Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "openSUSE-SU-2025:14665-1",
         initial_release_date: "2025-01-18T00:00:00Z",
         revision_history: [
            {
               date: "2025-01-18T00:00:00Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rsync-3.4.1-1.1.aarch64",
                        product: {
                           name: "rsync-3.4.1-1.1.aarch64",
                           product_id: "rsync-3.4.1-1.1.aarch64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "aarch64",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rsync-3.4.1-1.1.ppc64le",
                        product: {
                           name: "rsync-3.4.1-1.1.ppc64le",
                           product_id: "rsync-3.4.1-1.1.ppc64le",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "ppc64le",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rsync-3.4.1-1.1.s390x",
                        product: {
                           name: "rsync-3.4.1-1.1.s390x",
                           product_id: "rsync-3.4.1-1.1.s390x",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "s390x",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "rsync-3.4.1-1.1.x86_64",
                        product: {
                           name: "rsync-3.4.1-1.1.x86_64",
                           product_id: "rsync-3.4.1-1.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "openSUSE Tumbleweed",
                        product: {
                           name: "openSUSE Tumbleweed",
                           product_id: "openSUSE Tumbleweed",
                           product_identification_helper: {
                              cpe: "cpe:/o:opensuse:tumbleweed",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "rsync-3.4.1-1.1.aarch64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
            },
            product_reference: "rsync-3.4.1-1.1.aarch64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rsync-3.4.1-1.1.ppc64le as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
            },
            product_reference: "rsync-3.4.1-1.1.ppc64le",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rsync-3.4.1-1.1.s390x as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
            },
            product_reference: "rsync-3.4.1-1.1.s390x",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "rsync-3.4.1-1.1.x86_64 as component of openSUSE Tumbleweed",
               product_id: "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            },
            product_reference: "rsync-3.4.1-1.1.x86_64",
            relates_to_product_reference: "openSUSE Tumbleweed",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-12084",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2024-12084",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2024-12084",
               url: "https://www.suse.com/security/cve/CVE-2024-12084",
            },
            {
               category: "external",
               summary: "SUSE Bug 1233760 for CVE-2024-12084",
               url: "https://bugzilla.suse.com/1233760",
            },
            {
               category: "external",
               summary: "SUSE Bug 1234100 for CVE-2024-12084",
               url: "https://bugzilla.suse.com/1234100",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2025-01-18T00:00:00Z",
               details: "critical",
            },
         ],
         title: "CVE-2024-12084",
      },
      {
         cve: "CVE-2024-12085",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2024-12085",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2024-12085",
               url: "https://www.suse.com/security/cve/CVE-2024-12085",
            },
            {
               category: "external",
               summary: "SUSE Bug 1233760 for CVE-2024-12085",
               url: "https://bugzilla.suse.com/1233760",
            },
            {
               category: "external",
               summary: "SUSE Bug 1234101 for CVE-2024-12085",
               url: "https://bugzilla.suse.com/1234101",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2025-01-18T00:00:00Z",
               details: "moderate",
            },
         ],
         title: "CVE-2024-12085",
      },
      {
         cve: "CVE-2024-12086",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2024-12086",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare with in order to determine what data needs to be sent to the server. By sending specially constructed checksum values for arbitrary files, an attacker may be able to reconstruct the data of those files byte-by-byte based on the responses from the client.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2024-12086",
               url: "https://www.suse.com/security/cve/CVE-2024-12086",
            },
            {
               category: "external",
               summary: "SUSE Bug 1233760 for CVE-2024-12086",
               url: "https://bugzilla.suse.com/1233760",
            },
            {
               category: "external",
               summary: "SUSE Bug 1234102 for CVE-2024-12086",
               url: "https://bugzilla.suse.com/1234102",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2025-01-18T00:00:00Z",
               details: "moderate",
            },
         ],
         title: "CVE-2024-12086",
      },
      {
         cve: "CVE-2024-12087",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2024-12087",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2024-12087",
               url: "https://www.suse.com/security/cve/CVE-2024-12087",
            },
            {
               category: "external",
               summary: "SUSE Bug 1233760 for CVE-2024-12087",
               url: "https://bugzilla.suse.com/1233760",
            },
            {
               category: "external",
               summary: "SUSE Bug 1234103 for CVE-2024-12087",
               url: "https://bugzilla.suse.com/1234103",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 8.8,
                  baseSeverity: "HIGH",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2025-01-18T00:00:00Z",
               details: "important",
            },
         ],
         title: "CVE-2024-12087",
      },
      {
         cve: "CVE-2024-12088",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2024-12088",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2024-12088",
               url: "https://www.suse.com/security/cve/CVE-2024-12088",
            },
            {
               category: "external",
               summary: "SUSE Bug 1233760 for CVE-2024-12088",
               url: "https://bugzilla.suse.com/1233760",
            },
            {
               category: "external",
               summary: "SUSE Bug 1234104 for CVE-2024-12088",
               url: "https://bugzilla.suse.com/1234104",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2025-01-18T00:00:00Z",
               details: "moderate",
            },
         ],
         title: "CVE-2024-12088",
      },
      {
         cve: "CVE-2024-12747",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2024-12747",
            },
         ],
         notes: [
            {
               category: "general",
               text: "A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
               "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2024-12747",
               url: "https://www.suse.com/security/cve/CVE-2024-12747",
            },
            {
               category: "external",
               summary: "SUSE Bug 1233760 for CVE-2024-12747",
               url: "https://bugzilla.suse.com/1233760",
            },
            {
               category: "external",
               summary: "SUSE Bug 1235475 for CVE-2024-12747",
               url: "https://bugzilla.suse.com/1235475",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 6.3,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.aarch64",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.ppc64le",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.s390x",
                  "openSUSE Tumbleweed:rsync-3.4.1-1.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2025-01-18T00:00:00Z",
               details: "moderate",
            },
         ],
         title: "CVE-2024-12747",
      },
   ],
}

cve-2024-12086

Vulnerability from cvelistv5

Published

2025-01-14 17:37

Modified

2025-03-15 00:13

Severity ?

6.1 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

Summary

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare with in order to determine what data needs to be sent to the server. By sending specially constructed checksum values for arbitrary files, an attacker may be able to reconstruct the data of those files byte-by-byte based on the responses from the client.

References

▼	URL	Tags
	https://access.redhat.com/security/cve/CVE-2024-12086	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2330577	issue-tracking, x_refsource_REDHAT
	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Version: 0 ≤ 3.3.0

Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-12086",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T14:14:25.165183Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-26T14:20:53.620Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            references: [
               {
                  tags: [
                     "exploit",
                  ],
                  url: "https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj",
               },
            ],
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/RsyncProject/rsync",
               defaultStatus: "unaffected",
               packageName: "rsync",
               versions: [
                  {
                     lessThanOrEqual: "3.3.0",
                     status: "affected",
                     version: "0",
                     versionType: "semver",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:6",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 6",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:7",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:8",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:openshift:4",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4",
               vendor: "Red Hat",
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue.",
            },
         ],
         datePublic: "2025-01-14T15:06:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. During this process, the rsync server will send checksums of local data to the client to compare with in order to determine what data needs to be sent to the server. By sending specially constructed checksum values for arbitrary files, an attacker may be able to reconstruct the data of those files byte-by-byte based on the responses from the client.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Moderate",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 6.1,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "CHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-390",
                     description: "Detection of Error Condition Without Action",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-15T00:13:07.411Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-12086",
            },
            {
               name: "RHBZ#2330577",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2330577",
            },
            {
               url: "https://kb.cert.org/vuls/id/952657",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-12-05T00:00:00+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-01-14T15:06:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Rsync: rsync server leaks arbitrary client files",
         workarounds: [
            {
               lang: "en",
               value: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
            },
         ],
         x_redhatCweChain: "CWE-390: Detection of Error Condition Without Action",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-12086",
      datePublished: "2025-01-14T17:37:54.960Z",
      dateReserved: "2024-12-03T08:57:58.397Z",
      dateUpdated: "2025-03-15T00:13:07.411Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2024-12747

Vulnerability from cvelistv5

Published

2025-01-14 17:39

Modified

2025-03-15 00:15

Severity ?

5.6 (Medium) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Summary

A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2025:2600	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-12747	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2332968	issue-tracking, x_refsource_REDHAT
	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Version: 0 ≤ 3.3.0

Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:3.1.3-21.el8_10 < * cpe:/o:redhat:enterprise_linux:8::baseos
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-12747",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-01-14T18:38:10.199669Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-01-14T18:38:36.602Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/RsyncProject/rsync",
               defaultStatus: "unaffected",
               packageName: "rsync",
               versions: [
                  {
                     lessThanOrEqual: "3.3.0",
                     status: "affected",
                     version: "0",
                     versionType: "semver",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:8::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-21.el8_10",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:6",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 6",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:7",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:openshift:4",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4",
               vendor: "Red Hat",
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Aleksei Gorban \"loqpa\" for reporting this issue.",
            },
         ],
         datePublic: "2025-01-14T15:06:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A flaw was found in rsync. This vulnerability arises from a race condition during rsync's handling of symbolic links. Rsync's default behavior when encountering symbolic links is to skip them. If an attacker replaced a regular file with a symbolic link at the right time, it was possible to bypass the default behavior and traverse symbolic links. Depending on the privileges of the rsync process, an attacker could leak sensitive information, potentially leading to privilege escalation.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Moderate",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "HIGH",
                  attackVector: "LOCAL",
                  availabilityImpact: "NONE",
                  baseScore: 5.6,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "CHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-362",
                     description: "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-15T00:15:23.593Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               name: "RHSA-2025:2600",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:2600",
            },
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-12747",
            },
            {
               name: "RHBZ#2332968",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2332968",
            },
            {
               url: "https://kb.cert.org/vuls/id/952657",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-12-18T07:12:52.493000+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-01-14T15:06:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Rsync: race condition in rsync handling symbolic links",
         workarounds: [
            {
               lang: "en",
               value: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
            },
         ],
         x_redhatCweChain: "CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-12747",
      datePublished: "2025-01-14T17:39:16.031Z",
      dateReserved: "2024-12-18T06:49:21.481Z",
      dateUpdated: "2025-03-15T00:15:23.593Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2024-12087

Vulnerability from cvelistv5

Published

2025-01-14 17:57

Modified

2025-03-15 00:14

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Summary

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client.

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2025:2600	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-12087	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2330672	issue-tracking, x_refsource_REDHAT
	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Version: 0 ≤ 3.3.0

Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:3.1.3-21.el8_10 < * cpe:/o:redhat:enterprise_linux:8::baseos
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-12087",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T14:12:12.897301Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-26T14:12:41.645Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            references: [
               {
                  tags: [
                     "exploit",
                  ],
                  url: "https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj",
               },
            ],
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/RsyncProject/rsync",
               defaultStatus: "unaffected",
               packageName: "rsync",
               versions: [
                  {
                     lessThanOrEqual: "3.3.0",
                     status: "affected",
                     version: "0",
                     versionType: "semver",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:8::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-21.el8_10",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:6",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 6",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:7",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:openshift:4",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4",
               vendor: "Red Hat",
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue.",
            },
         ],
         datePublic: "2025-01-14T15:06:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option for many client options and can be enabled by the server even if not explicitly enabled by the client. When using the `--inc-recursive` option, a lack of proper symlink verification coupled with deduplication checks occurring on a per-file-list basis could allow a server to write files outside of the client's intended destination directory. A malicious server could write malicious files to arbitrary locations named after valid directories/paths on the client.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Moderate",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-35",
                     description: "Path Traversal: '.../...//'",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-15T00:14:28.990Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               name: "RHSA-2025:2600",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:2600",
            },
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-12087",
            },
            {
               name: "RHBZ#2330672",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2330672",
            },
            {
               url: "https://kb.cert.org/vuls/id/952657",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-12-05T21:23:24.139000+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-01-14T15:06:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Rsync: path traversal vulnerability in rsync",
         workarounds: [
            {
               lang: "en",
               value: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
            },
         ],
         x_redhatCweChain: "CWE-35: Path Traversal: '.../...//'",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-12087",
      datePublished: "2025-01-14T17:57:33.927Z",
      dateReserved: "2024-12-03T08:58:04.170Z",
      dateUpdated: "2025-03-15T00:14:28.990Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2024-12084

Vulnerability from cvelistv5

Published

2025-01-15 14:16

Modified

2025-02-27 04:55

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.

References

▼	URL	Tags
	https://access.redhat.com/security/cve/CVE-2024-12084	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2330527	issue-tracking, x_refsource_REDHAT
	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Version: 3.2.7
Version: 3.3.0

Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-12084",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T00:00:00+00:00",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-27T04:55:11.854Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            references: [
               {
                  tags: [
                     "exploit",
                  ],
                  url: "https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj",
               },
            ],
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2025-01-15T15:02:44.467Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  url: "http://www.openwall.com/lists/oss-security/2025/01/14/6",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/RsyncProject/rsync",
               defaultStatus: "unaffected",
               packageName: "rsync",
               versions: [
                  {
                     status: "affected",
                     version: "3.2.7",
                  },
                  {
                     status: "affected",
                     version: "3.3.0",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:6",
               ],
               defaultStatus: "unaffected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 6",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:7",
               ],
               defaultStatus: "unaffected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:8",
               ],
               defaultStatus: "unaffected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9",
               ],
               defaultStatus: "unaffected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:openshift:4",
               ],
               defaultStatus: "unaffected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4",
               vendor: "Red Hat",
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue.",
            },
         ],
         datePublic: "2025-01-14T15:06:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Critical",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-122",
                     description: "Heap-based Buffer Overflow",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-01-16T18:32:19.776Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-12084",
            },
            {
               name: "RHBZ#2330527",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2330527",
            },
            {
               url: "https://kb.cert.org/vuls/id/952657",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-12-05T09:32:44.653000+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-01-14T15:06:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Rsync: heap buffer overflow in rsync due to improper checksum length handling",
         workarounds: [
            {
               lang: "en",
               value: "Red Hat recommends filtering untrusted connections to Rsync via firewall rules on the host and on network firewall appliances.\n\nAdditionally, systems which only need to provide remote Rsync access to users with known identities can enable authentication using the ```auth users``` parameter in their rsyncd configuration file (rsyncd.conf). \n\nSystems that provide anonymous read access to hosted files via Rsync, such as mirror hosts, do not have reasonable mitigation options available. We strongly urge operators using vulnerable versions of Rsync to update as soon as possible.",
            },
         ],
         x_redhatCweChain: "CWE-122: Heap-based Buffer Overflow",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-12084",
      datePublished: "2025-01-15T14:16:35.363Z",
      dateReserved: "2024-12-03T08:57:42.580Z",
      dateUpdated: "2025-02-27T04:55:11.854Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2024-12088

Vulnerability from cvelistv5

Published

2025-01-14 17:38

Modified

2025-03-15 00:15

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Summary

A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2025:2600	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-12088	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2330676	issue-tracking, x_refsource_REDHAT
	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Version: 0 ≤ 3.3.0

Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:3.1.3-21.el8_10 < * cpe:/o:redhat:enterprise_linux:8::baseos
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-12088",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T14:13:08.347346Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-26T14:13:22.355Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            references: [
               {
                  tags: [
                     "exploit",
                  ],
                  url: "https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj",
               },
            ],
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/RsyncProject/rsync",
               defaultStatus: "unaffected",
               packageName: "rsync",
               versions: [
                  {
                     lessThanOrEqual: "3.3.0",
                     status: "affected",
                     version: "0",
                     versionType: "semver",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:8::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-21.el8_10",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:6",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 6",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:7",
               ],
               defaultStatus: "unknown",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 7",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:openshift:4",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4",
               vendor: "Red Hat",
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue.",
            },
         ],
         datePublic: "2025-01-14T15:06:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Moderate",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-35",
                     description: "Path Traversal: '.../...//'",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-15T00:15:03.570Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               name: "RHSA-2025:2600",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:2600",
            },
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-12088",
            },
            {
               name: "RHBZ#2330676",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2330676",
            },
            {
               url: "https://kb.cert.org/vuls/id/952657",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-12-05T21:55:22.700000+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-01-14T15:06:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Rsync: --safe-links option bypass leads to path traversal",
         workarounds: [
            {
               lang: "en",
               value: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
            },
         ],
         x_redhatCweChain: "CWE-35: Path Traversal: '.../...//'",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-12088",
      datePublished: "2025-01-14T17:38:34.890Z",
      dateReserved: "2024-12-03T08:58:08.307Z",
      dateUpdated: "2025-03-15T00:15:03.570Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2024-12085

Vulnerability from cvelistv5

Published

2025-01-14 17:37

Modified

2025-03-20 07:05

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2025:0324	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0325	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0637	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0688	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0714	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0774	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0787	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0790	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0849	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0884	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:0885	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1120	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1123	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1128	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1225	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1227	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1242	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:1451	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2025:2701	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-12085	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2330539	issue-tracking, x_refsource_REDHAT
	https://kb.cert.org/vuls/id/952657

Impacted products

Vendor

Product

Version

▼

Version: 0 ≤ 3.3.0

Red Hat	Red Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION	Unaffected: 0:3.0.6-12.el6_10.1 < * cpe:/o:redhat:rhel_els:6
Red Hat	Red Hat Enterprise Linux 7 Extended Lifecycle Support	Unaffected: 0:3.1.2-12.el7_9.1 < * cpe:/o:redhat:rhel_els:7
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:3.1.3-20.el8_10 < * cpe:/o:redhat:enterprise_linux:8::baseos
Red Hat	Red Hat Enterprise Linux 8.2 Advanced Update Support	Unaffected: 0:3.1.3-7.el8_2.3 < * cpe:/o:redhat:rhel_aus:8.2::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	Unaffected: 0:3.1.3-12.el8_4.3 < * cpe:/o:redhat:rhel_e4s:8.4::baseos cpe:/o:redhat:rhel_tus:8.4::baseos cpe:/o:redhat:rhel_aus:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Telecommunications Update Service	Unaffected: 0:3.1.3-12.el8_4.3 < * cpe:/o:redhat:rhel_e4s:8.4::baseos cpe:/o:redhat:rhel_tus:8.4::baseos cpe:/o:redhat:rhel_aus:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions	Unaffected: 0:3.1.3-12.el8_4.3 < * cpe:/o:redhat:rhel_e4s:8.4::baseos cpe:/o:redhat:rhel_tus:8.4::baseos cpe:/o:redhat:rhel_aus:8.4::baseos
Red Hat	Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	Unaffected: 0:3.1.3-14.el8_6.6 < * cpe:/o:redhat:rhel_e4s:8.6::baseos cpe:/o:redhat:rhel_aus:8.6::baseos cpe:/o:redhat:rhel_tus:8.6::baseos
Red Hat	Red Hat Enterprise Linux 8.6 Telecommunications Update Service	Unaffected: 0:3.1.3-14.el8_6.6 < * cpe:/o:redhat:rhel_e4s:8.6::baseos cpe:/o:redhat:rhel_aus:8.6::baseos cpe:/o:redhat:rhel_tus:8.6::baseos
Red Hat	Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	Unaffected: 0:3.1.3-14.el8_6.6 < * cpe:/o:redhat:rhel_e4s:8.6::baseos cpe:/o:redhat:rhel_aus:8.6::baseos cpe:/o:redhat:rhel_tus:8.6::baseos
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 0:3.1.3-20.el8_8.1 < * cpe:/o:redhat:rhel_eus:8.8::baseos
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:3.2.3-20.el9_5.1 < * cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:3.2.3-20.el9_5.1 < * cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream
Red Hat	Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	Unaffected: 0:3.2.3-9.el9_0.3 < * cpe:/o:redhat:rhel_e4s:9.0::baseos cpe:/a:redhat:rhel_e4s:9.0::appstream
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support	Unaffected: 0:3.2.3-19.el9_2.1 < * cpe:/o:redhat:rhel_eus:9.2::baseos cpe:/a:redhat:rhel_eus:9.2::appstream
Red Hat	Red Hat Enterprise Linux 9.4 Extended Update Support	Unaffected: 0:3.2.3-19.el9_4.1 < * cpe:/a:redhat:rhel_eus:9.4::appstream cpe:/o:redhat:rhel_eus:9.4::baseos
Red Hat	Red Hat OpenShift Container Platform 4.12	Unaffected: 412.86.202502100314-0 < * cpe:/a:redhat:openshift:4.12::el8
Red Hat	Red Hat OpenShift Container Platform 4.13	Unaffected: 413.92.202503112237-0 < * cpe:/a:redhat:openshift:4.13::el9 cpe:/a:redhat:openshift:4.13::el8
Red Hat	Red Hat OpenShift Container Platform 4.14	Unaffected: 414.92.202502111902-0 < * cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9
Red Hat	Red Hat OpenShift Container Platform 4.15	Unaffected: 415.92.202501281917-0 < * cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9
Red Hat	Red Hat OpenShift Container Platform 4.16	Unaffected: v4.16.0-202501311735.p0.g2cb0020.assembly.stream.el9 < * cpe:/a:redhat:openshift:4.16::el9
Red Hat	Red Hat OpenShift Container Platform 4.16	Unaffected: v4.16.0-202501311933.p0.g4246d04.assembly.stream.el9 < * cpe:/a:redhat:openshift:4.16::el9
Red Hat	Red Hat OpenShift Container Platform 4.16	Unaffected: v4.16.0-202501311605.p0.g4246d04.assembly.stream.el9 < * cpe:/a:redhat:openshift:4.16::el9
Red Hat	Red Hat OpenShift Container Platform 4.17	Unaffected: 417.94.202502051822-0 < * cpe:/a:redhat:openshift:4.17::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-22 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-10 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v6.8.1-454 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-17 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v1.0.0-537 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-4 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v0.4.0-339 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-4 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v1.1.0-320 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.1-552 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v3.3.2-9 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-5 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-12 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v5.8.17-5 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v0.1.0-725 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v0.1.0-342 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.8-RHEL-9	Unaffected: v0.28.1-88 < * cpe:/a:redhat:logging:5.8::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v5.9.11-25 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v5.9.11-11 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v0.4.0-340 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v5.9.11-5 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v1.1.0-321 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v3.3.2-8 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v5.9.11-6 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v5.9.11-9 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v5.9.11-4 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v0.1.0-724 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v0.1.0-341 < * cpe:/a:redhat:logging:5.9::el9
Red Hat	RHOL-5.9-RHEL-9	Unaffected: v0.34.1-30 < * cpe:/a:redhat:logging:5.9::el9

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-12085",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-02-26T00:00:00+00:00",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-02-27T04:55:13.505Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            references: [
               {
                  tags: [
                     "exploit",
                  ],
                  url: "https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj",
               },
            ],
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://github.com/RsyncProject/rsync",
               defaultStatus: "unaffected",
               packageName: "rsync",
               versions: [
                  {
                     lessThanOrEqual: "3.3.0",
                     status: "affected",
                     version: "0",
                     versionType: "semver",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_els:6",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 6 Extended Lifecycle Support  - EXTENSION",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.0.6-12.el6_10.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_els:7",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 7 Extended Lifecycle Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.2-12.el7_9.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:8::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-20.el8_10",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_aus:8.2::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.2 Advanced Update Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-7.el8_2.3",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:8.4::baseos",
                  "cpe:/o:redhat:rhel_tus:8.4::baseos",
                  "cpe:/o:redhat:rhel_aus:8.4::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-12.el8_4.3",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:8.4::baseos",
                  "cpe:/o:redhat:rhel_tus:8.4::baseos",
                  "cpe:/o:redhat:rhel_aus:8.4::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.4 Telecommunications Update Service",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-12.el8_4.3",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:8.4::baseos",
                  "cpe:/o:redhat:rhel_tus:8.4::baseos",
                  "cpe:/o:redhat:rhel_aus:8.4::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-12.el8_4.3",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                  "cpe:/o:redhat:rhel_aus:8.6::baseos",
                  "cpe:/o:redhat:rhel_tus:8.6::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-14.el8_6.6",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                  "cpe:/o:redhat:rhel_aus:8.6::baseos",
                  "cpe:/o:redhat:rhel_tus:8.6::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.6 Telecommunications Update Service",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-14.el8_6.6",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:8.6::baseos",
                  "cpe:/o:redhat:rhel_aus:8.6::baseos",
                  "cpe:/o:redhat:rhel_tus:8.6::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-14.el8_6.6",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_eus:8.8::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 8.8 Extended Update Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.1.3-20.el8_8.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9::baseos",
                  "cpe:/a:redhat:enterprise_linux:9::appstream",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.2.3-20.el9_5.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:enterprise_linux:9::baseos",
                  "cpe:/a:redhat:enterprise_linux:9::appstream",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.2.3-20.el9_5.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_e4s:9.0::baseos",
                  "cpe:/a:redhat:rhel_e4s:9.0::appstream",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.2.3-9.el9_0.3",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/o:redhat:rhel_eus:9.2::baseos",
                  "cpe:/a:redhat:rhel_eus:9.2::appstream",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9.2 Extended Update Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.2.3-19.el9_2.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://access.redhat.com/downloads/content/package-browser/",
               cpes: [
                  "cpe:/a:redhat:rhel_eus:9.4::appstream",
                  "cpe:/o:redhat:rhel_eus:9.4::baseos",
               ],
               defaultStatus: "affected",
               packageName: "rsync",
               product: "Red Hat Enterprise Linux 9.4 Extended Update Support",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "0:3.2.3-19.el9_4.1",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.12::el8",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4.12",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "412.86.202502100314-0",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.13::el9",
                  "cpe:/a:redhat:openshift:4.13::el8",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4.13",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "413.92.202503112237-0",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.14::el8",
                  "cpe:/a:redhat:openshift:4.14::el9",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4.14",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "414.92.202502111902-0",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.15::el8",
                  "cpe:/a:redhat:openshift:4.15::el9",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4.15",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "415.92.202501281917-0",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.16::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift4/ose-ansible-rhel9-operator",
               product: "Red Hat OpenShift Container Platform 4.16",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v4.16.0-202501311735.p0.g2cb0020.assembly.stream.el9",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.16::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift4/ose-helm-rhel9-operator",
               product: "Red Hat OpenShift Container Platform 4.16",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v4.16.0-202501311933.p0.g4246d04.assembly.stream.el9",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.16::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift4/ose-operator-sdk-rhel9",
               product: "Red Hat OpenShift Container Platform 4.16",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v4.16.0-202501311605.p0.g4246d04.assembly.stream.el9",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:openshift:4.17::el9",
               ],
               defaultStatus: "affected",
               packageName: "rhcos",
               product: "Red Hat OpenShift Container Platform 4.17",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "417.94.202502051822-0",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/cluster-logging-operator-bundle",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-22",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/cluster-logging-rhel9-operator",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-10",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/elasticsearch6-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v6.8.1-454",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/elasticsearch-operator-bundle",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-17",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/elasticsearch-proxy-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v1.0.0-537",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/elasticsearch-rhel9-operator",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-4",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/eventrouter-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.4.0-339",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/fluentd-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-4",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/log-file-metric-exporter-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v1.1.0-320",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/logging-curator5-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.1-552",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/logging-loki-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v3.3.2-9",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/logging-view-plugin-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-5",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/loki-operator-bundle",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-12",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/loki-rhel9-operator",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.8.17-5",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/lokistack-gateway-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.1.0-725",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/opa-openshift-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.1.0-342",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.8::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/vector-rhel9",
               product: "RHOL-5.8-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.28.1-88",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/cluster-logging-operator-bundle",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.9.11-25",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/cluster-logging-rhel9-operator",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.9.11-11",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/eventrouter-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.4.0-340",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/fluentd-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.9.11-5",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/log-file-metric-exporter-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v1.1.0-321",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/logging-loki-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v3.3.2-8",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/logging-view-plugin-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.9.11-6",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/loki-operator-bundle",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.9.11-9",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/loki-rhel9-operator",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v5.9.11-4",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/lokistack-gateway-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.1.0-724",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/opa-openshift-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.1.0-341",
                     versionType: "rpm",
                  },
               ],
            },
            {
               collectionURL: "https://catalog.redhat.com/software/containers/",
               cpes: [
                  "cpe:/a:redhat:logging:5.9::el9",
               ],
               defaultStatus: "affected",
               packageName: "openshift-logging/vector-rhel9",
               product: "RHOL-5.9-RHEL-9",
               vendor: "Red Hat",
               versions: [
                  {
                     lessThan: "*",
                     status: "unaffected",
                     version: "v0.34.1-30",
                     versionType: "rpm",
                  },
               ],
            },
         ],
         credits: [
            {
               lang: "en",
               value: "Red Hat would like to thank Jasiel Spelman (Google), Pedro Gallegos (Google), and Simon Scannell (Google) for reporting this issue.",
            },
         ],
         datePublic: "2025-01-14T15:06:00.000Z",
         descriptions: [
            {
               lang: "en",
               value: "A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     namespace: "https://access.redhat.com/security/updates/classification/",
                     value: "Important",
                  },
                  type: "Red Hat severity rating",
               },
            },
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-119",
                     description: "Improper Restriction of Operations within the Bounds of a Memory Buffer",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-20T07:05:52.614Z",
            orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
            shortName: "redhat",
         },
         references: [
            {
               name: "RHSA-2025:0324",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0324",
            },
            {
               name: "RHSA-2025:0325",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0325",
            },
            {
               name: "RHSA-2025:0637",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0637",
            },
            {
               name: "RHSA-2025:0688",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0688",
            },
            {
               name: "RHSA-2025:0714",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0714",
            },
            {
               name: "RHSA-2025:0774",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0774",
            },
            {
               name: "RHSA-2025:0787",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0787",
            },
            {
               name: "RHSA-2025:0790",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0790",
            },
            {
               name: "RHSA-2025:0849",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0849",
            },
            {
               name: "RHSA-2025:0884",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0884",
            },
            {
               name: "RHSA-2025:0885",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:0885",
            },
            {
               name: "RHSA-2025:1120",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1120",
            },
            {
               name: "RHSA-2025:1123",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1123",
            },
            {
               name: "RHSA-2025:1128",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1128",
            },
            {
               name: "RHSA-2025:1225",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1225",
            },
            {
               name: "RHSA-2025:1227",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1227",
            },
            {
               name: "RHSA-2025:1242",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1242",
            },
            {
               name: "RHSA-2025:1451",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:1451",
            },
            {
               name: "RHSA-2025:2701",
               tags: [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/errata/RHSA-2025:2701",
            },
            {
               tags: [
                  "vdb-entry",
                  "x_refsource_REDHAT",
               ],
               url: "https://access.redhat.com/security/cve/CVE-2024-12085",
            },
            {
               name: "RHBZ#2330539",
               tags: [
                  "issue-tracking",
                  "x_refsource_REDHAT",
               ],
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2330539",
            },
            {
               url: "https://kb.cert.org/vuls/id/952657",
            },
         ],
         timeline: [
            {
               lang: "en",
               time: "2024-12-05T12:06:36.594000+00:00",
               value: "Reported to Red Hat.",
            },
            {
               lang: "en",
               time: "2025-01-14T15:06:00+00:00",
               value: "Made public.",
            },
         ],
         title: "Rsync: info leak via uninitialized stack contents",
         workarounds: [
            {
               lang: "en",
               value: "Seeing as this vulnerability relies on information leakage coming from the presence of data in the uninitialized memory of the `sum2` buffer, a potential mitigation involves compiling rsync with the `-ftrivial-auto-var-init=zero` option set. This mitigates the issue because it initializes the `sum2` variable's memory with zeroes to prevent uninitialized memory disclosure.",
            },
         ],
         x_redhatCweChain: "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer",
      },
   },
   cveMetadata: {
      assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749",
      assignerShortName: "redhat",
      cveId: "CVE-2024-12085",
      datePublished: "2025-01-14T17:37:16.036Z",
      dateReserved: "2024-12-03T08:57:53.329Z",
      dateUpdated: "2025-03-20T07:05:52.614Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

Vulnerability from csaf_opensuse

cve-2024-12086

Vulnerability from cvelistv5

cve-2024-12747

Vulnerability from cvelistv5

cve-2024-12087

Vulnerability from cvelistv5

cve-2024-12084

Vulnerability from cvelistv5

cve-2024-12088

Vulnerability from cvelistv5

cve-2024-12085

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature