Description:
The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.
Security Fix(es):
* rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding (CVE-2026-43618)
* rsync: TOCTOU symlink race condition allowing local privilege escalation in daemon mode without chroot. (CVE-2026-29518)
Bug Fix(es) and Enhancement(s):
* Rebase rsync to version 3.4.4 in AlmaLinux10 (JIRA:AlmaLinux-181630)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
rsync-3.4.4-1.el10_2.aarch64.rpm |
fccdaa6860f95f0746e2d026bc073dd9361c55ee23147f8c3545263885cabecd |
| noarch |
rsync-rrsync-3.4.4-1.el10_2.noarch.rpm |
540a428308cad863c69c33ed960b0bc940301aa9b2b59258a14f1fc3273c97b0 |
| noarch |
rsync-daemon-3.4.4-1.el10_2.noarch.rpm |
c41feb2a21f43ce9aa84fc833bcabb0d96f6b707a7ee6ccbb51ade3b02c7e18a |
| ppc64le |
rsync-3.4.4-1.el10_2.ppc64le.rpm |
f647940855d0882a89c9c8af34110f0d645530c07c3df22fddd550122768d77a |
| s390x |
rsync-3.4.4-1.el10_2.s390x.rpm |
4bac3b92f7fb570459cecfede7d3e7282dc0f1c0bcff3ea2dabfc837b1430234 |
| x86_64 |
rsync-3.4.4-1.el10_2.x86_64.rpm |
c1ff0be45dc6e852fe762935819defabaa6dc16c8c51a30dd5762f4ab9799418 |
| x86_64_v2 |
rsync-3.4.4-1.el10_2.x86_64_v2.rpm |
463cbb511da217900efb7bae6f577cc9195bec5b316912aa57c6bdd973bc8429 |
