cbcvebase.
CVE-2024-12084
published 2025-01-15

CVE-2024-12084: A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
almalinuxalmalinux
debianrsync< rsync 3.2.7-1+deb12u1 (bookworm)rsync 3.2.7-1+deb12u1 (bookworm)
msrcazl3_rsync_3.2.7-1_on_azure_linux_3.0
msrcazl3_rsync_3.4.1-1_on_azure_linux_3.0
msrccbl2_rsync_3.2.5-1_on_cbl_mariner_2.0
msrccbl2_rsync_3.4.1-1_on_cbl_mariner_2.0
nixosnixos< 24.1124.11
nixosnixos
paloaltopan-os
redhatenterprise_linux
sambarsync
sambarsync
sambarsync>= 0 < 3.2.7-1+deb12u13.2.7-1+deb12u1
sambarsync>= 0 < 3.3.0+ds1-33.3.0+ds1-3
sambarsync>= 0 < 3.3.0+ds1-33.3.0+ds1-3
sambarsync>= 0 < 3.1.3-8ubuntu0.93.1.3-8ubuntu0.9
sambarsync>= 0 < 3.1.3-8ubuntu0.83.1.3-8ubuntu0.8
sambarsync>= 0 < 3.2.7-0ubuntu0.22.04.43.2.7-0ubuntu0.22.04.4
sambarsync>= 0 < 3.2.7-0ubuntu0.22.04.33.2.7-0ubuntu0.22.04.3
sambarsync>= 0 < 3.2.7-1ubuntu1.23.2.7-1ubuntu1.2
sambarsync>= 0 < 3.2.7-1ubuntu1.13.2.7-1ubuntu1.1
sambarsync>= 0 < 3.3.0-1ubuntu0.23.3.0-1ubuntu0.2
sambarsync>= 0 < 3.3.0-1ubuntu0.13.3.0-1ubuntu0.1
sambarsync>= 0 < 3.1.0-2ubuntu0.4+esm23.1.0-2ubuntu0.4+esm2
sambarsync>= 0 < 3.1.0-2ubuntu0.4+esm13.1.0-2ubuntu0.4+esm1

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL