Vulnerability Details CVE-2024-12085
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.6%
CVSS Severity
CVSS v3 Score 7.5
References
- https://access.redhat.com/errata/RHSA-2025:0324
- https://access.redhat.com/errata/RHSA-2025:0325
- https://access.redhat.com/errata/RHSA-2025:0637
- https://access.redhat.com/errata/RHSA-2025:0688
- https://access.redhat.com/errata/RHSA-2025:0714
- https://access.redhat.com/errata/RHSA-2025:0774
- https://access.redhat.com/errata/RHSA-2025:0787
- https://access.redhat.com/errata/RHSA-2025:0790
- https://access.redhat.com/errata/RHSA-2025:0849
- https://access.redhat.com/errata/RHSA-2025:0884
- https://access.redhat.com/errata/RHSA-2025:0885
- https://access.redhat.com/errata/RHSA-2025:1120
- https://access.redhat.com/errata/RHSA-2025:1123
- https://access.redhat.com/errata/RHSA-2025:1128
- https://access.redhat.com/errata/RHSA-2025:1225
- https://access.redhat.com/errata/RHSA-2025:1227
- https://access.redhat.com/errata/RHSA-2025:1242
- https://access.redhat.com/errata/RHSA-2025:1451
- https://access.redhat.com/errata/RHSA-2025:2701
- https://access.redhat.com/security/cve/CVE-2024-12085
- https://bugzilla.redhat.com/show_bug.cgi?id=2330539
- https://kb.cert.org/vuls/id/952657
- https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj
Products affected by CVE-2024-12085
-
cpe:2.3:a:redhat:openshift:5.0
-
cpe:2.3:a:redhat:openshift_container_platform:4.12
-
cpe:2.3:a:redhat:openshift_container_platform:4.13
-
cpe:2.3:a:redhat:openshift_container_platform:4.14
-
cpe:2.3:a:redhat:openshift_container_platform:4.15
-
cpe:2.3:a:redhat:openshift_container_platform:4.16
-
cpe:2.3:a:redhat:openshift_container_platform:4.17
-
cpe:2.3:a:samba:rsync:1.6.4
-
cpe:2.3:a:samba:rsync:1.6.5
-
cpe:2.3:a:samba:rsync:1.6.6
-
cpe:2.3:a:samba:rsync:1.6.7
-
cpe:2.3:a:samba:rsync:1.6.8
-
cpe:2.3:a:samba:rsync:1.6.9
-
cpe:2.3:a:samba:rsync:1.7.0
-
cpe:2.3:a:samba:rsync:1.7.1
-
cpe:2.3:a:samba:rsync:1.7.2
-
cpe:2.3:a:samba:rsync:1.7.3
-
cpe:2.3:a:samba:rsync:1.7.4
-
cpe:2.3:a:samba:rsync:2.0.0
-
cpe:2.3:a:samba:rsync:2.0.1
-
cpe:2.3:a:samba:rsync:2.0.10
-
cpe:2.3:a:samba:rsync:2.0.11
-
cpe:2.3:a:samba:rsync:2.0.12
-
cpe:2.3:a:samba:rsync:2.0.13
-
cpe:2.3:a:samba:rsync:2.0.14
-
cpe:2.3:a:samba:rsync:2.0.15
-
cpe:2.3:a:samba:rsync:2.0.16
-
cpe:2.3:a:samba:rsync:2.0.17
-
cpe:2.3:a:samba:rsync:2.0.18
-
cpe:2.3:a:samba:rsync:2.0.19
-
cpe:2.3:a:samba:rsync:2.0.2
-
cpe:2.3:a:samba:rsync:2.0.3
-
cpe:2.3:a:samba:rsync:2.0.4
-
cpe:2.3:a:samba:rsync:2.0.5
-
cpe:2.3:a:samba:rsync:2.0.6
-
cpe:2.3:a:samba:rsync:2.0.7
-
cpe:2.3:a:samba:rsync:2.0.8
-
cpe:2.3:a:samba:rsync:2.0.9
-
cpe:2.3:a:samba:rsync:2.1.0
-
cpe:2.3:a:samba:rsync:2.1.1
-
cpe:2.3:a:samba:rsync:2.2.0
-
cpe:2.3:a:samba:rsync:2.2.1
-
cpe:2.3:a:samba:rsync:2.3.0
-
cpe:2.3:a:samba:rsync:2.3.1
-
cpe:2.3:a:samba:rsync:2.3.2
-
cpe:2.3:a:samba:rsync:2.3.3
-
cpe:2.3:a:samba:rsync:2.4.0
-
cpe:2.3:a:samba:rsync:2.4.1
-
cpe:2.3:a:samba:rsync:2.4.2
-
cpe:2.3:a:samba:rsync:2.4.3
-
cpe:2.3:a:samba:rsync:2.4.4
-
cpe:2.3:a:samba:rsync:2.4.5
-
cpe:2.3:a:samba:rsync:2.4.6
-
cpe:2.3:a:samba:rsync:2.4.7
-
cpe:2.3:a:samba:rsync:2.4.8
-
cpe:2.3:a:samba:rsync:2.5.0
-
cpe:2.3:a:samba:rsync:2.5.1
-
cpe:2.3:a:samba:rsync:2.5.2
-
cpe:2.3:a:samba:rsync:2.5.3
-
cpe:2.3:a:samba:rsync:2.5.4
-
cpe:2.3:a:samba:rsync:2.5.5
-
cpe:2.3:a:samba:rsync:2.5.6
-
cpe:2.3:a:samba:rsync:2.5.7
-
cpe:2.3:a:samba:rsync:2.6.0
-
cpe:2.3:a:samba:rsync:2.6.1
-
cpe:2.3:a:samba:rsync:2.6.2
-
cpe:2.3:a:samba:rsync:2.6.3
-
cpe:2.3:a:samba:rsync:2.6.4
-
cpe:2.3:a:samba:rsync:2.6.5
-
cpe:2.3:a:samba:rsync:2.6.6
-
cpe:2.3:a:samba:rsync:2.6.7
-
cpe:2.3:a:samba:rsync:2.6.8
-
cpe:2.3:a:samba:rsync:2.6.9
-
cpe:2.3:a:samba:rsync:3.0.0
-
cpe:2.3:a:samba:rsync:3.0.1
-
cpe:2.3:a:samba:rsync:3.0.2
-
cpe:2.3:a:samba:rsync:3.0.3
-
cpe:2.3:a:samba:rsync:3.0.4
-
cpe:2.3:a:samba:rsync:3.0.5
-
cpe:2.3:a:samba:rsync:3.0.6
-
cpe:2.3:a:samba:rsync:3.0.7
-
cpe:2.3:a:samba:rsync:3.0.8
-
cpe:2.3:a:samba:rsync:3.0.9
-
cpe:2.3:a:samba:rsync:3.1.0
-
cpe:2.3:a:samba:rsync:3.1.1
-
cpe:2.3:a:samba:rsync:3.1.2
-
cpe:2.3:a:samba:rsync:3.1.3
-
cpe:2.3:a:samba:rsync:3.2.0
-
cpe:2.3:a:samba:rsync:3.2.1
-
cpe:2.3:a:samba:rsync:3.2.2
-
cpe:2.3:a:samba:rsync:3.2.3
-
cpe:2.3:a:samba:rsync:3.2.4
-
cpe:2.3:o:almalinux:almalinux:10.0
-
cpe:2.3:o:almalinux:almalinux:8.0
-
cpe:2.3:o:almalinux:almalinux:9.0
-
cpe:2.3:o:archlinux:arch_linux:-
-
cpe:2.3:o:gentoo:linux:-
-
cpe:2.3:o:nixos:nixos:-
-
cpe:2.3:o:nixos:nixos:13.10
-
cpe:2.3:o:nixos:nixos:14.04
-
cpe:2.3:o:nixos:nixos:14.12
-
cpe:2.3:o:nixos:nixos:15.09
-
cpe:2.3:o:nixos:nixos:16.03
-
cpe:2.3:o:nixos:nixos:16.09
-
cpe:2.3:o:nixos:nixos:17.03
-
cpe:2.3:o:nixos:nixos:17.09
-
cpe:2.3:o:nixos:nixos:18.03
-
cpe:2.3:o:nixos:nixos:18.09
-
cpe:2.3:o:nixos:nixos:19.03
-
cpe:2.3:o:nixos:nixos:19.09
-
cpe:2.3:o:nixos:nixos:20.03
-
cpe:2.3:o:nixos:nixos:20.09
-
cpe:2.3:o:nixos:nixos:21.05
-
cpe:2.3:o:nixos:nixos:21.11
-
cpe:2.3:o:nixos:nixos:22.05
-
cpe:2.3:o:nixos:nixos:22.11
-
cpe:2.3:o:nixos:nixos:23.05
-
cpe:2.3:o:nixos:nixos:23.11
-
cpe:2.3:o:nixos:nixos:24.05
-
cpe:2.3:o:redhat:enterprise_linux:8.0
-
cpe:2.3:o:redhat:enterprise_linux:9.0
-
cpe:2.3:o:redhat:enterprise_linux_eus:8.8
-
cpe:2.3:o:redhat:enterprise_linux_eus:9.2
-
cpe:2.3:o:redhat:enterprise_linux_eus:9.4
-
cpe:2.3:o:redhat:enterprise_linux_eus:9.6
-
cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64
-
cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64
-
cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64
-
cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:8.8_aarch64
-
cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.4_aarch64
-
cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.6_aarch64
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.4_s390x
-
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.6_s390x
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.8_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.2_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.6_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_server:6.0
-
cpe:2.3:o:redhat:enterprise_linux_server:7.0
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:9.2
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:9.4
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:9.6
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 8.4_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.4_ppc64le
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 8.6_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.6_ppc64le
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 8.8_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:8.8_ppc64le
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 9.0_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.0_ppc64le
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 9.2_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.2_ppc64le
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 9.4_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.4_ppc64le
-
Redhat » Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions » Version: 9.6_ppc64lecpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.6_ppc64le
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8
-
cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:8.4
-
cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:8.6
-
cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.0
-
cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.2
-
cpe:2.3:o:redhat:enterprise_linux_update_services_for_sap_solutions:9.6
-
cpe:2.3:o:suse:suse_linux:-
-
cpe:2.3:o:tritondatacenter:smartos:*