High severity8.1NVD Advisory· Published May 20, 2026· Updated May 21, 2026
CVE-2026-43618
CVE-2026-43618
Description
Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where a 32-bit signed counter is not checked for overflow, allowing a malicious sender to trigger an overflow that causes the receiver process to read and return data from outside the intended buffer bounds. Attackers can exploit this vulnerability to disclose process memory contents including environment variables, passwords, heap and stack data, and library memory pointers, significantly reducing ASLR effectiveness and facilitating further exploitation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- osv-coords6 versionspkg:rpm/almalinux/rsyncpkg:rpm/almalinux/rsync-daemonpkg:rpm/almalinux/rsync-rrsyncpkg:rpm/opensuse/rsync&distro=openSUSE%20Tumbleweedpkg:rpm/suse/rsync&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/rsync&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 3.4.4-1.el10_2+ 5 more
- (no CPE)range: < 3.4.4-1.el10_2
- (no CPE)range: < 3.4.4-1.el10_2
- (no CPE)range: < 3.4.4-1.el10_2
- (no CPE)range: < 3.4.3-1.1
- (no CPE)range: < 3.4.1-160000.4.1
- (no CPE)range: < 3.4.1-160000.4.1
Patches
Vulnerability mechanics
References
3- github.com/RsyncProject/rsync/security/advisories/GHSA-g37v-g3gj-pmwqnvdVendor Advisory
- www.vulncheck.com/advisories/rsync-integer-overflow-information-disclosurenvdThird Party Advisory
- github.com/RsyncProject/rsync/releases/tag/v3.4.3nvdRelease Notes
News mentions
0No linked articles in our index yet.