[Git][security-tracker-team/security-tracker][master] rsync fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Apr 29 18:38:44 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
057c7239 by Moritz Muehlenhoff at 2026-04-29T19:38:15+02:00
rsync fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6665,7 +6665,7 @@ CVE-2023-5872 (In Wago Smart Designer in versions up to 2.33.1 a low privileged
CVE-2023-3634 (In products of the MSE6 product-family by Festo a remote authenticated ...)
NOT-FOR-US: Festo
CVE-2026-41035 (In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted len ...)
- - rsync <unfixed> (bug #1134617; unimportant)
+ - rsync 3.4.2+ds1-1 (bug #1134617; unimportant)
NOTE: https://www.openwall.com/lists/oss-security/2026/04/16/2
NOTE: https://github.com/RsyncProject/rsync/issues/871
NOTE: https://github.com/RsyncProject/rsync/pull/875
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/057c7239e10ae81008ad74757fdee09c6c45019e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/057c7239e10ae81008ad74757fdee09c6c45019e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260429/b1fd0bda/attachment.htm>
More information about the debian-security-tracker-commits
mailing list