Red Hat Security Advisory: rsync security update
This advisory addresses multiple security vulnerabilities in the rsync utility used in Red Hat Enterprise Linux 9. 6 Extended Update Support and related variants. The issues include an rsync server leaking arbitrary client files (CVE-2024-12086), an out-of-bounds array access via negative index (CVE-2025-10158), and a use-after-free vulnerability in extended attribute handling (CVE-2026-41035). These vulnerabilities have been rated with an important security impact by Red Hat Product Security. Updates fixing these issues are available and should be applied to affected systems. The advisory covers various architectures including x86_64, s390x, ppc64le, and aarch64. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
The rsync utility, which facilitates fast file synchronization by sending only file differences, contains multiple security vulnerabilities affecting Red Hat Enterprise Linux 9.6 EUS and related products. The vulnerabilities include: (1) a server-side issue where arbitrary client files can be leaked (CVE-2024-12086), (2) an out-of-bounds array access triggered by a negative index (CVE-2025-10158), and (3) a use-after-free flaw in handling extended attributes (CVE-2026-41035). These issues could potentially lead to unauthorized data disclosure or memory corruption. Red Hat has released updated rsync packages addressing these vulnerabilities. The advisory references the Red Hat Security Advisory RHSA-2026:20603 for detailed patch information.
Potential Impact
The vulnerabilities in rsync could allow an attacker to leak arbitrary client files from the rsync server, cause out-of-bounds memory access, or trigger use-after-free conditions, potentially leading to information disclosure or memory corruption. While no active exploits have been reported, the issues are rated as having an important security impact, indicating a significant risk if left unpatched.
Mitigation Recommendations
Red Hat has released updated rsync packages for Red Hat Enterprise Linux 9.6 Extended Update Support and related variants that address these vulnerabilities. Users should apply these official updates promptly to remediate the issues. Detailed instructions and updated packages are available in the Red Hat Security Advisory RHSA-2026:20603 at https://access.redhat.com/errata/RHSA-2026:20603. No additional mitigation steps are indicated beyond applying the provided patches.
Red Hat Security Advisory: rsync security update
Description
This advisory addresses multiple security vulnerabilities in the rsync utility used in Red Hat Enterprise Linux 9. 6 Extended Update Support and related variants. The issues include an rsync server leaking arbitrary client files (CVE-2024-12086), an out-of-bounds array access via negative index (CVE-2025-10158), and a use-after-free vulnerability in extended attribute handling (CVE-2026-41035). These vulnerabilities have been rated with an important security impact by Red Hat Product Security. Updates fixing these issues are available and should be applied to affected systems. The advisory covers various architectures including x86_64, s390x, ppc64le, and aarch64. No known exploits in the wild have been reported at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The rsync utility, which facilitates fast file synchronization by sending only file differences, contains multiple security vulnerabilities affecting Red Hat Enterprise Linux 9.6 EUS and related products. The vulnerabilities include: (1) a server-side issue where arbitrary client files can be leaked (CVE-2024-12086), (2) an out-of-bounds array access triggered by a negative index (CVE-2025-10158), and (3) a use-after-free flaw in handling extended attributes (CVE-2026-41035). These issues could potentially lead to unauthorized data disclosure or memory corruption. Red Hat has released updated rsync packages addressing these vulnerabilities. The advisory references the Red Hat Security Advisory RHSA-2026:20603 for detailed patch information.
Potential Impact
The vulnerabilities in rsync could allow an attacker to leak arbitrary client files from the rsync server, cause out-of-bounds memory access, or trigger use-after-free conditions, potentially leading to information disclosure or memory corruption. While no active exploits have been reported, the issues are rated as having an important security impact, indicating a significant risk if left unpatched.
Mitigation Recommendations
Red Hat has released updated rsync packages for Red Hat Enterprise Linux 9.6 Extended Update Support and related variants that address these vulnerabilities. Users should apply these official updates promptly to remediate the issues. Detailed instructions and updated packages are available in the Red Hat Security Advisory RHSA-2026:20603 at https://access.redhat.com/errata/RHSA-2026:20603. No additional mitigation steps are indicated beyond applying the provided patches.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:20603
- Cve Count
- 3
- Additional Cves
- ["CVE-2025-10158","CVE-2026-41035"]
- Cvss Version
- null
Threat ID: 6a160977e29bf47b5064263d
Added to database: 5/26/2026, 8:58:31 PM
Last enriched: 5/26/2026, 11:34:06 PM
Last updated: 5/27/2026, 4:52:58 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.