CVE-2022-29154

CVE-2022-29154

Name

CVE-2022-29154

Description

An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MLIST	http://www.openwall.com/lists/oss-security/2022/08/02/1
MISC	https://github.com/WayneD/rsync/tags
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/

Type

URI

MLIST

http://www.openwall.com/lists/oss-security/2022/08/02/1

MISC

https://github.com/WayneD/rsync/tags

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YRQAI7H4M4RQZ2IWZUEEXECBE5D56BH2/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMBOJ77A7T7PQCARMDUK75TE6LLESZ3O/

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:samba:rsync::::::::`	rsync	>= None	< 3.2.5

CPE URI

Source package

Min version

Max version

cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*

rsync

>= None

< 3.2.5

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
rsync	edge-main	3.2.4-r2	Natanael Copa <ncopa@alpinelinux.org>	fixed
rsync	edge-main	3.2.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	edge-main	3.2.3-r5	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	edge-main	3.2.3-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	edge-main	3.2.3-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	edge-main	3.1.2-r7	None	possibly vulnerable
rsync	3.22-main	3.2.4-r2	None	fixed
rsync	3.22-main	3.1.2-r7	None	possibly vulnerable
rsync	3.21-main	3.2.4-r2	None	fixed
rsync	3.21-main	3.1.2-r7	None	possibly vulnerable
rsync	3.20-main	3.2.4-r2	None	fixed
rsync	3.20-main	3.1.2-r7	None	possibly vulnerable
rsync	3.19-main	3.2.4-r2	None	fixed
rsync	3.19-main	3.1.2-r7	None	possibly vulnerable
rsync	3.18-main	3.2.4-r2	None	fixed
rsync	3.17-main	3.2.4-r2	None	fixed

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages