rpm package
suse/rsync&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7
pkg:rpm/suse/rsync&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-10158 | Med | 4.3 | < 3.2.7-150600.3.14.1 | 3.2.7-150600.3.14.1 | Nov 18, 2025 | A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue. |
- affected < 3.2.7-150600.3.14.1fixed 3.2.7-150600.3.14.1
A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue.