-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 18 Dec 2024 17:11:25 +0100 Source: rsync Binary: rsync rsync-dbgsym Architecture: mips64el Version: 3.2.7-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: mipsel Build Daemon (mipsel-osuosl-03) Changed-By: Salvatore Bonaccorso Description: rsync - fast, versatile, remote (and local) file-copying tool Changes: rsync (3.2.7-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Some checksum buffer fixes. (CVE-2024-12084) * Another cast when multiplying integers. (CVE-2024-12084) * prevent information leak off the stack (CVE-2024-12085) * refuse fuzzy options when fuzzy not selected (CVE-2024-12086) * added secure_relative_open() (CVE-2024-12086) * receiver: use secure_relative_open() for basis file (CVE-2024-12086) * disallow ../ elements in relpath for secure_relative_open (CVE-2024-12086) * Refuse a duplicate dirlist. (CVE-2024-12087) * range check dir_ndx before use (CVE-2024-12087) * make --safe-links stricter (CVE-2024-12088) * fixed symlink race condition in sender (CVE-2024-12747) * raise protocol version to 32 Checksums-Sha1: c50efeb2b33feee30684491217dd2ba7e2e8397b 541640 rsync-dbgsym_3.2.7-1+deb12u1_mips64el.deb 2577254e5bf248ea5202346340b0b55c54cca689 6718 rsync_3.2.7-1+deb12u1_mips64el-buildd.buildinfo 4b947a75633b0c29db85e5eb6bddca7d7e76f936 404652 rsync_3.2.7-1+deb12u1_mips64el.deb Checksums-Sha256: 527161d07e31f623b2d62d64cbfeb6d2d65515900a2deba7db61d740b627585c 541640 rsync-dbgsym_3.2.7-1+deb12u1_mips64el.deb 1646e10f0cf1af6b987e008c1d7a08b4ffa004348f4e7a45c9163ed0c83eabf8 6718 rsync_3.2.7-1+deb12u1_mips64el-buildd.buildinfo b54b80b99ca1959a49536ba88a8cd430fad1ae93d3e9d6322a1928aaf8c136d8 404652 rsync_3.2.7-1+deb12u1_mips64el.deb Files: 821d94563cec3a7fb326d5d2d13d8b97 541640 debug optional rsync-dbgsym_3.2.7-1+deb12u1_mips64el.deb 178384da8810fb130a6ebc914def7e14 6718 net optional rsync_3.2.7-1+deb12u1_mips64el-buildd.buildinfo 0944c0a6455b8b168b297bd4e3bb9794 404652 net optional rsync_3.2.7-1+deb12u1_mips64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEunmvxaaGKuI+hxxClmZGXOM83t8FAmd4X0AACgkQlmZGXOM8 3t9ydw/+M8eOyvimbZCaYQdYPzu0togMjDx4u3fPL4fi/553Nkt01uXeSNTlkGz5 dzVRGUkqjo9DjoOpe4JMzzSRFuKAFJIkYaDPgfueGVYOG1iFQ1LuXYWQYhk+CU/o zlOAeWAzN/PPxyArm+/aC+pW7ps5WLtola+/jk1vfL3eDUWsv4ASW5FGonwX/Ti/ X6rjhj17Hsm5W4YU/NaJU1PdGhUlTQiGxKMm9YZTS+3p+3gwe87A6Lmboxd+EhZA 5VcnfSx1DpVeQu2fAw1W3xtndoIuyj+BmJHi2/tSQ8ihU3qJb7gnL8nyl53eKSUy ylejxD3TWK7uorBY0VRhGaCy9Ltbg472bxjmRbPBRBHVe6Dz1NAqAh3xtH6z5muv aYaC7cjpeFHhTn1fYYE89itCiuF2HIgQHY/RhokpbVsX/qZAEOMOBm+mIsEIsmEN 0oBCYTYH+eTXoGIuKY0cRcT9a/0w+Wst1Ki20r02IGEtZ00/PvzwT3TJSEvB6iNF XUUiHJdgYBKkTvxCsjgBx2d1j9afVjSflubfwmGgGZt1onXtG1ZaaAGiSkw/+meX YWMSpcUaOVg5KQ10Lxg5pDZW2Vsob6eJnbZpL+j/JvmF/k2o1ZQzAVmHKQTSzPa5 mltPjUe0mh2p9neCRdXKj7dRFD5+ftCdMpjUfIdjfAfclREUP5A= =neuO -----END PGP SIGNATURE-----