[ALSA-2025:7050] Moderate: rsync security update
Type:
security
Severity:
moderate
Release date:
2025-07-02
Description:
The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fix(es): * rsync: Path traversal vulnerability in rsync (CVE-2024-12087) * rsync: --safe-links option bypass leads to path traversal (CVE-2024-12088) * rsync: Race Condition in rsync Handling Symbolic Links (CVE-2024-12747) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinuxRelease Notes linked from the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 rsync-3.2.5-3.el9.aarch64.rpm d84a9a47317266922357eab9ea77b5b99417b89a3fa5e0b6b2652a0c6e017a3c
noarch rsync-daemon-3.2.5-3.el9.noarch.rpm 2fd37e5ea7af580d528c37cf5f398bcb366a912424c5a39416bfd18707881111
noarch rsync-rrsync-3.2.5-3.el9.noarch.rpm cbe2d5773743f194e3fb7118ac001560fb1c18e7bb2f3058c13086b829e9375b
ppc64le rsync-3.2.5-3.el9.ppc64le.rpm 20beae722e80322b6c9cfe5f2a9a3ddb8ca10f2d20653d0370ca32954e03c3fc
s390x rsync-3.2.5-3.el9.s390x.rpm bd1af14eb1c527767fe05caa0bd4f9d06a8129df935c88d68576049da0c9670e
x86_64 rsync-3.2.5-3.el9.x86_64.rpm d82dfca5929f8303c202e742fa21cc01dab98cb7c322027e7d304a484407932d
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.