Nixpkgs Security Tracker

Accepted

Permalink CVE-2024-12084

updated 1 year ago by @LeSuisse Activity log

Created automatic suggestion 1 year ago
@LeSuisse accepted 1 year ago

Rsync: heap buffer overflow in rsync due to improper checksum length handling

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.

Affected products

rhcos

rsync

==3.3.0
==3.2.7
*

Matching in nixpkgs

pkgs.rsync

Fast incremental file transfer utility

nixos-unstable 3.3.0
- nixpkgs-unstable 3.3.0
- nixos-unstable-small 3.3.0

Package maintainers

@ehmry Emery Hemingway <ehmry@posteo.net>
@ivan Ivan Kozik <ivan@ludios.org>
@kampfschlaefer Arnold Krille <arnold@arnoldarts.de>

Suggestion detail

Affected products

Matching in nixpkgs

pkgs.rsync

Package maintainers