MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
rsync
Search

Six vulnerabilities discovered in rsync

Wednesday January 15, 2025. 03:19 PM , from LWN.net
Nick Tait
announced on the
oss-security mailing list that

rsync, the widely used file transfer program, had a number of serious vulnerabilities.
Users can mitigate all six vulnerabilities by upgrading to
version 3.4.0, which was

released on January 14. While all users should upgrade, servers that use rsyncd are
especially impacted:

In the most severe CVE, an attacker only requires
anonymous read access to a rsync server, such as a public mirror, to
execute arbitrary code on the machine the server is running on.
Read more at LWN.net
https://lwn.net/Articles/1005129/

Related News

rsync Update to Chrome 132 closes several security vulnerabilities PC WorldJan 15
vulnerabilities 68 percent of organizations don't fix critical vulnerabilities on time BetaNewsJan 15
six Three New Superconductive Materials Were Discovered in 2024 SlashdotJan 12
users New Superconductive Materials Have Just Been Discovered Wired: Tech.Jan 12
server Baby spider monkey in a onesie discovered in a Rolls Royce during a DUI stop BoingBoingJan 4
discovered Incredible paths of huge dinosaur footprints discovered in UK BoingBoingJan 2
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Jan, Wed 15 - 23:43 CET