CVE-2024-12084

CVE-2024-12084

Name

CVE-2024-12084

Description

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
vdb-entry	https://access.redhat.com/security/cve/CVE-2024-12084
issue-tracking	https://bugzilla.redhat.com/show_bug.cgi?id=2330527
secalert@redhat.com	https://kb.cert.org/vuls/id/952657
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2025/01/14/6
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj
vendor-advisory	https://access.redhat.com/errata/RHBA-2025:6470
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20250131-0002/
af854a3a-2127-422b-91ae-364da2661108	https://www.kb.cert.org/vuls/id/952657

Type

URI

vdb-entry

https://access.redhat.com/security/cve/CVE-2024-12084

issue-tracking

https://bugzilla.redhat.com/show_bug.cgi?id=2330527

secalert@redhat.com

https://kb.cert.org/vuls/id/952657

af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2025/01/14/6

134c704f-9b21-4f2e-91b3-4a467353bcc0

https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-mvqj

vendor-advisory

https://access.redhat.com/errata/RHBA-2025:6470

af854a3a-2127-422b-91ae-364da2661108

https://security.netapp.com/advisory/ntap-20250131-0002/

af854a3a-2127-422b-91ae-364da2661108

https://www.kb.cert.org/vuls/id/952657

Match rules

CPE URI	Source package	Min version	Max version
	shopxo	== 3.2.7	== 3.2.7
	shopxo	== 3.3.0	== 3.3.0
`cpe:/o:redhat:enterprise_linux:10.0`	shopxo	>= 0:3.4.1-2.el10	< *

CPE URI

Source package

Min version

Max version

shopxo

== 3.2.7

shopxo

== 3.3.0

cpe:/o:redhat:enterprise_linux:10.0

shopxo

>= 0:3.4.1-2.el10

< *

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
rsync	edge-main	3.4.0-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
rsync	edge-main	3.3.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	3.22-main	3.4.0-r0	None	fixed
rsync	3.21-main	3.4.0-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
rsync	3.21-main	3.3.0-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	3.21-main	3.3.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	3.20-main	3.4.0-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
rsync	3.20-main	3.3.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	3.19-main	3.4.0-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
rsync	3.19-main	3.2.7-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
rsync	3.18-main	3.4.0-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed

Source package

Branch

Version

Maintainer

Status

rsync

edge-main

3.4.0-r0

Natanael Copa <ncopa@alpinelinux.org>

fixed

rsync

edge-main