Release Info

Advisory: CLSA-2025:1738632064

OS: Ubuntu 18.04 ELS

Public date: 2025-02-03 20:21:06

Project: rsync

Version: 3.1.2-2.1ubuntu1.6+tuxcare.els3

Errata link: https://errata.cloudlinux.com/ubuntu18-els/CLSA-2025-1738632064.html

Changelog

* SECURITY UPDATE: path traversal vulnerability via improper symlink verification, when using the `--safe-links` option - debian/patches/CVE-2024-12088.patch: make --safe-links stricter - CVE-2024-12088

Update

Update command: apt-get update apt-get --only-upgrade install rsync*

Packages list

rsync_3.1.2-2.1ubuntu1.6+tuxcare.els3_amd64.deb

CVEs

CVE-2024-12087
CVE-2024-12086
CVE-2024-12088