Search for packages
| purl | pkg:deb/debian/rsync@2.3.1-0.slink.1 |
| Next non-vulnerable version | 3.2.7-1+deb12u4 |
| Latest non-vulnerable version | 3.2.7-1+deb12u4 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1dp2-jcqh-7ket
Aliases: CVE-2017-17434 |
Multiple vulnerabilities have been found in rsync, the worst of which could allow remote attackers to bypass access restrictions. |
Affected by 14 other vulnerabilities. Affected by 14 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-1snq-bkw3-3kff
Aliases: CVE-2017-16548 |
Multiple vulnerabilities have been found in rsync, the worst of which could allow remote attackers to bypass access restrictions. |
Affected by 14 other vulnerabilities. Affected by 14 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-2phq-g3rz-2be8
Aliases: CVE-2007-6199 |
When rsync is run w/o chroot, symlinks that point outside daemon's root can be created |
Affected by 17 other vulnerabilities. |
|
VCID-472y-7aza-j7c4
Aliases: CVE-2024-12747 |
Multiple vulnerabilities have been discovered in rsync, the worst of which could lead to arbitrary code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-4g8w-n139-dfbn
Aliases: CVE-2018-5764 |
A vulnerability in rsync might allow remote attackers to execute arbitrary commands. |
Affected by 6 other vulnerabilities. |
|
VCID-66n1-gnxa-2uf3
Aliases: CVE-2014-2855 |
rsync: CPU consumption denial of service when authenticating with a non-existent username |
Affected by 14 other vulnerabilities. |
|
VCID-78yq-gu4t-rke9
Aliases: CVE-2020-14387 |
Multiple vulnerabilities have been discovered in rsync, the worst of which can lead to denial of service or information disclosure. |
Affected by 7 other vulnerabilities. |
|
VCID-9d7g-bby6-8fb3
Aliases: CVE-2024-12088 |
Multiple vulnerabilities have been discovered in rsync, the worst of which could lead to arbitrary code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-c1ec-hvuv-ckgk
Aliases: CVE-2024-12086 |
Multiple vulnerabilities have been discovered in rsync, the worst of which could lead to arbitrary code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-c8h5-wzqz-e3c6
Aliases: CVE-2004-2093 |
Buffer overflow in the open_socket_out function in socket.c for rsync 2.5.7 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long RSYNC_PROXY environment variable. NOTE: since rsync is not setuid, this issue does not provide any additional privileges beyond those that are already available to the user. Therefore this issue may be REJECTED in the future. |
Affected by 22 other vulnerabilities. |
|
VCID-eyjp-7kks-jbfr
Aliases: CVE-2016-9841 |
Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. |
Affected by 6 other vulnerabilities. |
|
VCID-f6ja-7k85-j7aa
Aliases: CVE-2014-9512 |
Multiple vulnerabilities have been found in rsync, the worst of which could allow remote attackers to write arbitrary files. |
Affected by 14 other vulnerabilities. |
|
VCID-f9da-9x6z-kqcv
Aliases: CVE-2008-1720 |
A buffer overflow in rsync might lead to the remote execution of arbitrary code when extended attributes are being used. |
Affected by 17 other vulnerabilities. |
|
VCID-h2jt-8ppk-nbh9
Aliases: CVE-2017-17433 |
Multiple vulnerabilities have been found in rsync, the worst of which could allow remote attackers to bypass access restrictions. |
Affected by 14 other vulnerabilities. Affected by 14 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-m6xx-a91r-sbhu
Aliases: CVE-2016-9842 |
Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. |
Affected by 6 other vulnerabilities. |
|
VCID-mr6h-6jrp-gyf3
Aliases: CVE-2016-9840 |
Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. |
Affected by 6 other vulnerabilities. |
|
VCID-pfb2-95fp-7bbm
Aliases: CVE-2006-2083 |
An attacker having write access to an rsync module might be able to execute arbitrary code on an rsync server. |
Affected by 21 other vulnerabilities. |
|
VCID-q576-uw5g-8kh3
Aliases: CVE-2024-12087 |
Multiple vulnerabilities have been discovered in rsync, the worst of which could lead to arbitrary code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-qwud-4v7w-43dv
Aliases: CVE-2011-1097 |
This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2012. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information. |
Affected by 16 other vulnerabilities. |
|
VCID-rp3f-utn4-ubb7
Aliases: CVE-2003-0962 |
security flaw |
Affected by 22 other vulnerabilities. |
|
VCID-smft-ms93-6kf1
Aliases: CVE-2016-9843 |
Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. |
Affected by 6 other vulnerabilities. |
|
VCID-su3r-5r3f-fbfr
Aliases: CVE-2004-0426 |
security flaw |
Affected by 22 other vulnerabilities. |
|
VCID-ty4c-hwkm-uqes
Aliases: CVE-2004-0792 |
rsync fails to properly sanitize paths. This vulnerability could allow the listing of arbitrary files and allow file overwriting outside module's path on rsync server configurations that allow uploading. |
Affected by 22 other vulnerabilities. |
|
VCID-y5ep-xtwr-ckg6
Aliases: CVE-2024-12085 |
Multiple vulnerabilities have been discovered in rsync, the worst of which could lead to arbitrary code execution. |
Affected by 0 other vulnerabilities. |
|
VCID-yd1c-ptsv-hffu
Aliases: CVE-2007-6200 |
rsync excluded content access restrictions bypass via symlinks |
Affected by 17 other vulnerabilities. |
|
VCID-zr3m-d432-vqge
Aliases: CVE-2007-4091 |
Two user-assisted buffer overflow vulnerabilities have been discovered in rsync. |
Affected by 17 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||