rpm package
suse/rsync&distro=SUSE Linux Enterprise Server 15 SP1-LTSS
pkg:rpm/suse/rsync&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-29154 | — | < 3.1.3-150000.4.13.1 | 3.1.3-150000.4.13.1 | Aug 2, 2022 | An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of | ||
| CVE-2020-14387 | — | < 3.2.3-150000.4.23.2 | 3.2.3-150000.4.23.2 | May 27, 2021 | A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which |
- CVE-2022-29154Aug 2, 2022affected < 3.1.3-150000.4.13.1fixed 3.1.3-150000.4.13.1
An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of
- CVE-2020-14387May 27, 2021affected < 3.2.3-150000.4.23.2fixed 3.2.3-150000.4.23.2
A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which