Fluid Attacks Database

Description

rsync 3.1.1 allows remote attackers to write to arbitrary files via a symlink attack on a file in the synchronization path.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 14	rsync	>=0 <3.1.1-3	3.1.1-3
debian 13	rsync	>=0 <3.1.1-3	3.1.1-3
debian 11	rsync	>=0 <3.1.1-3	3.1.1-3
debian 12	rsync	>=0 <3.1.1-3	3.1.1-3
rpm rhel6	rsync	-	-
rpm rhel5	rsync	-	-
rpm rhel7	rsync	-	-

Aliases

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.