Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.
- https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/EGI-Federation/SVG-advisories
- https://github.com/Ostorlab/KEV
- https://github.com/adegoodyer/kubernetes-admin-toolkit
- https://github.com/mosaicwang/myrpm
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/rxerium/CVE-2024-12084
- https://github.com/themirze/cve-2024-12084