VYPR

rpm package

suse/rsync&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP1

pkg:rpm/suse/rsync&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1

Vulnerabilities (2)

  • CVE-2022-29154Aug 2, 2022
    affected < 3.1.3-150000.4.13.1fixed 3.1.3-150000.4.13.1

    An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of

  • CVE-2020-14387May 27, 2021
    affected < 3.2.3-150000.4.23.2fixed 3.2.3-150000.4.23.2

    A flaw was found in rsync in versions since 3.2.0pre1. Rsync improperly validates certificate with host mismatch vulnerability. A remote, unauthenticated attacker could exploit the flaw by performing a man-in-the-middle attack using a valid certificate for another hostname which