Advisory: CLSA-2025:1737464920
OS: CentOS 8.5 ELS
Public date: 2025-01-21 08:08:42
Project: rsync
Version: 3.1.3-12.el8.tuxcare.els5
Errata link: https://errata.cloudlinux.com/centos8.5-els/CLSA-2025-1737464920.html
- CVE-2024-12088: fix path traversal vulnerability by properly verifying symbolic link destinations - CVE-2024-12085: fix issue with checksum length manipulation leading to uninitialized memory leak
Update command: dnf update rsync*
rsync-3.1.3-12.el8.tuxcare.els5.x86_64.rpm rsync-daemon-3.1.3-12.el8.tuxcare.els5.noarch.rpm