[ALSA-2022:8291] Moderate: rsync security and bug fix update
Type:
security
Severity:
moderate
Release date:
2022-11-18
Description:
The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fix(es): * zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field (CVE-2022-37434) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 rsync-3.2.3-18.el9.aarch64.rpm 1d47dcb05b345e40ca12ae885dfbdcfda7d3d401e47890a6cca994ac3c1815e7
noarch rsync-daemon-3.2.3-18.el9.noarch.rpm 1b7b8d0f1db62a381e9185eebd1de7e50598cff114744e8b9f5608fc7689b231
ppc64le rsync-3.2.3-18.el9.ppc64le.rpm 80a5233faa503ab7a879be7ea59d9884e9594c23700a078d28bfd146e2ba6630
s390x rsync-3.2.3-18.el9.s390x.rpm 8fbbb83bfd308d8cc9fd5430308610dff74f251316c65d0abf0a3c8294571937
x86_64 rsync-3.2.3-18.el9.x86_64.rpm e2d83f9e45848b39bd69a8d19f84a0c92912c70fcfd88801954a43de23218328
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.