Techly NewsGet the app

Get the latest tech news

Rsync vulnerabilities


Message-ID: <CALDM2HfAOzs+zr3XLCDAKH8oOosigdaNooUANDf=Ez5mLSvQcQ@mail.gmail.com> Date: Tue, 14 Jan 2025 09:53:56 -0700 From: Nick Tait <ntait@...hat.com> To: oss-security@...ts.openwall.com Subject: RSYNC: 6 vulnerabilities Hello OSS-security, Two independent groups of researchers have identified a total of 6 vulnerabilities in rsync. In the most severe CVE, an attacker only requires anonymous read access to a rsync server, such as a public mirror, to execute arbitrary code on the machine the server is running on.

[<prev][next>][thread-next>][day][month][year][list]

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Vulnerabilities

Vulnerabilities

Photo of researchers

researchers

Photo of total

total

Related news:

News photo

Rsync 3.4 Released Due To Multiple, Significant Security Vulnerabilities

News photo

Buyers of Razer’s bogus “N95” Zephyr masks get over $1 million in refunds | $1 million total sent to 6,764 consumers due to Razer settlement with FTC.

News photo

Researchers open source Sky-T1, a ‘reasoning’ AI model that can be trained for less than $450

« Sky-scanning complete for Gaia
Hinge’s new AI feature determines if your prompt response is too basic »