Skip to content

Commit b75bdc0

Browse files
azurelinux-securityazurelinux-security
committed
Patch rsync for CVE-2025-10158 
1 parent 9172b12 commit b75bdc0

File tree

2 files changed

+38
-1
lines changed

2 files changed

+38
-1
lines changed

SPECS/rsync/CVE-2025-10158.patch

Lines changed: 33 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,33 @@
1+
From 19bc086cd5ba49074baf330b8fdd77fb80ff39ae Mon Sep 17 00:00:00 2001
2+
From: Andrew Tridgell <[email protected]>
3+
Date: Sat, 23 Aug 2025 17:26:53 +1000
4+
Subject: [PATCH] fixed an invalid access to files array
5+
6+
this was found by Calum Hutton from Rapid7. It is a real bug, but
7+
analysis shows it can't be leverged into an exploit. Worth fixing
8+
though.
9+
10+
Many thanks to Calum and Rapid7 for finding and reporting this
11+
12+
Signed-off-by: Azure Linux Security Servicing Account <[email protected]>
13+
Upstream-reference: https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f.patch
14+
---
15+
sender.c | 2 ++
16+
1 file changed, 2 insertions(+)
17+
18+
diff --git a/sender.c b/sender.c
19+
index a4d46c3..b1588b7 100644
20+
--- a/sender.c
21+
+++ b/sender.c
22+
@@ -262,6 +262,8 @@ void send_files(int f_in, int f_out)
23+
24+
if (ndx - cur_flist->ndx_start >= 0)
25+
file = cur_flist->files[ndx - cur_flist->ndx_start];
26+
+ else if (cur_flist->parent_ndx < 0)
27+
+ exit_cleanup(RERR_PROTOCOL);
28+
else
29+
file = dir_flist->files[cur_flist->parent_ndx];
30+
if (F_PATHNAME(file)) {
31+
--
32+
2.45.4
33+

SPECS/rsync/rsync.spec

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,14 @@
11
Summary: Fast incremental file transfer.
22
Name: rsync
33
Version: 3.4.1
4-
Release: 1%{?dist}
4+
Release: 2%{?dist}
55
License: GPLv3+
66
Vendor: Microsoft Corporation
77
Distribution: Azure Linux
88
Group: Appication/Internet
99
URL: https://rsync.samba.org/
1010
Source0: https://download.samba.org/pub/rsync/src/%{name}-%{version}.tar.gz
11+
Patch0: CVE-2025-10158.patch
1112
BuildRequires: lz4-devel
1213
BuildRequires: systemd-rpm-macros
1314
BuildRequires: zlib-devel
@@ -60,6 +61,9 @@ EOF
6061
%{_sysconfdir}/rsyncd.conf
6162

6263
%changelog
64+
* Tue Nov 18 2025 Azure Linux Security Servicing Account <[email protected]> - 3.4.1-2
65+
- Patch for CVE-2025-10158
66+
6367
* Wed Jan 15 2025 Henry Beberman <[email protected]> - 3.4.1-1
6468
- Upgrade to version 3.4.1 to fix CVE-2024-12084, CVE-2024-12085, CVE-2024-12086, CVE-2024-12087, CVE-2024-12088, CVE-2024-12747
6569

0 commit comments

Comments
 (0)