Tag

Rsync

4 briefs RSS

Rsync TOCTOU Vulnerability Allows File Write Redirection

Rsync versions before 3.4.3 are vulnerable to a TOCTOU race condition allowing attackers with write access to a module path to redirect file writes outside intended directories by replacing parent directory components with symbolic links, potentially leading to privilege escalation when the daemon runs with elevated privileges and chroot is disabled.

rsync privilege-escalation toctou

2r 1t 1c May 20, 2026

high advisory

Multiple Vulnerabilities in Rsync

2 rules 4 TTPs

Multiple vulnerabilities in Rsync could be exploited by an attacker to elevate privileges, disclose information, bypass security precautions, and perform a denial of service attack.

rsync vulnerability privilege-escalation information-gathering defense-evasion impact

2r 4t May 20, 2026

high advisory

Rsync Integer Overflow Vulnerability Leading to Information Disclosure (CVE-2026-43618)

1 rule 2 TTPs 1 CVE

Rsync versions 3.4.2 and prior contain an integer overflow vulnerability (CVE-2026-43618) in the compressed-token decoder, allowing a malicious sender to trigger out-of-bounds memory access on the receiver and disclose sensitive process memory.

rsync <= 3.4.2 integer overflow information disclosure rsync

1r 2t 1c May 20, 2026

high advisory

rsync Use-After-Free Vulnerability in Extended Attribute Handling (CVE-2026-41035)

2 rules 1 TTP 1 CVE

rsync versions 3.0.1 through 3.4.1 are vulnerable to a use-after-free vulnerability in the receive_xattr function during a qsort call, triggered by an untrusted length value when the -X/--xattrs option is used, potentially leading to code execution.

rsync use-after-free cve-2026-41035 linux

2r 1t 1c Apr 16, 2026