CVE-2024-12088 log
| Source |
|
| Severity | High |
| Remote | Yes |
| Type | Arbitrary file upload |
| Description | A flaw was found in rsync. When using the --safe-links option, rsync fails to properly verify if a symbolic link destination contains another symbolic link within it. This results in a path traversal vulnerability, which may lead to arbitrary file write outside the desired directory. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2858 | rsync | 3.3.0-2 | 3.4.0-1 | Critical | Fixed |