Issued:
2022-05-11
Updated:
2022-05-11

RHSA-2022:2201 - Security Advisory

Synopsis

Important: rsync security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for rsync is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool.

Security Fix(es):

  • zlib: A flaw found in zlib when compressing (not decompressing) certain inputs (CVE-2018-25032)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 8 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

  • BZ - 2067945 - CVE-2018-25032 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

Red Hat Enterprise Linux for x86_64 8

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
x86_64
rsync-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 06d4674b42f53911888c984b85ea17b8f7ddbd9284b04727caf06040335025d2
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 9dd8a5a55fdb62903ec43943a54322fb7da7f95cbe4fa0f2eef106a88a69a3b8
rsync-debugsource-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: ba9ecc6d19c3877cc6812a35930f986964d05a65cbc7bd7ef15025bc681f286b

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
x86_64
rsync-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 06d4674b42f53911888c984b85ea17b8f7ddbd9284b04727caf06040335025d2
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 9dd8a5a55fdb62903ec43943a54322fb7da7f95cbe4fa0f2eef106a88a69a3b8
rsync-debugsource-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: ba9ecc6d19c3877cc6812a35930f986964d05a65cbc7bd7ef15025bc681f286b

Red Hat Enterprise Linux Server - AUS 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
x86_64
rsync-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 06d4674b42f53911888c984b85ea17b8f7ddbd9284b04727caf06040335025d2
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 9dd8a5a55fdb62903ec43943a54322fb7da7f95cbe4fa0f2eef106a88a69a3b8
rsync-debugsource-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: ba9ecc6d19c3877cc6812a35930f986964d05a65cbc7bd7ef15025bc681f286b

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
s390x
rsync-3.1.3-14.el8_6.2.s390x.rpm SHA-256: 73576962b9648267e51aff204b33be8b4529289d7a4d27688415c1c064856801
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.s390x.rpm SHA-256: ba361044189edf2791e46a051754e4bdad533fb3eeb1f42f4deb29f6e27b236b
rsync-debugsource-3.1.3-14.el8_6.2.s390x.rpm SHA-256: a072930a7fc6e93021f170b6089ac602f9f05fda2df49066bb4fdaae95d64e26

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
s390x
rsync-3.1.3-14.el8_6.2.s390x.rpm SHA-256: 73576962b9648267e51aff204b33be8b4529289d7a4d27688415c1c064856801
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.s390x.rpm SHA-256: ba361044189edf2791e46a051754e4bdad533fb3eeb1f42f4deb29f6e27b236b
rsync-debugsource-3.1.3-14.el8_6.2.s390x.rpm SHA-256: a072930a7fc6e93021f170b6089ac602f9f05fda2df49066bb4fdaae95d64e26

Red Hat Enterprise Linux for Power, little endian 8

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
ppc64le
rsync-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 22217e0e42108087b78239162349f8c33e18fda9bcb6b90f951424c254281f09
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 1ed47daa6b0601b1d7728739439ac66c49b65dca479644133aaeef99a3d29b67
rsync-debugsource-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 229f76f1e96090780401abb501daa3a94ab1a624df073d94edf41bda03baa880

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
ppc64le
rsync-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 22217e0e42108087b78239162349f8c33e18fda9bcb6b90f951424c254281f09
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 1ed47daa6b0601b1d7728739439ac66c49b65dca479644133aaeef99a3d29b67
rsync-debugsource-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 229f76f1e96090780401abb501daa3a94ab1a624df073d94edf41bda03baa880

Red Hat Enterprise Linux Server - TUS 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
x86_64
rsync-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 06d4674b42f53911888c984b85ea17b8f7ddbd9284b04727caf06040335025d2
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 9dd8a5a55fdb62903ec43943a54322fb7da7f95cbe4fa0f2eef106a88a69a3b8
rsync-debugsource-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: ba9ecc6d19c3877cc6812a35930f986964d05a65cbc7bd7ef15025bc681f286b

Red Hat Enterprise Linux for ARM 64 8

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
aarch64
rsync-3.1.3-14.el8_6.2.aarch64.rpm SHA-256: f89b88b177fd1feeb1128cb07c3c15afa78d99de844be8e5a35492dedb81da92
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.aarch64.rpm SHA-256: bfec2feca5a99c887129f75d6306e1b30d2ec5d7527a2f6c4d20d6f8b61ccbd0
rsync-debugsource-3.1.3-14.el8_6.2.aarch64.rpm SHA-256: 81f10abaebe0a484e79e292ece2cc828e453624bb0696eed14a2e6a6a00cf39f

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
aarch64
rsync-3.1.3-14.el8_6.2.aarch64.rpm SHA-256: f89b88b177fd1feeb1128cb07c3c15afa78d99de844be8e5a35492dedb81da92
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.aarch64.rpm SHA-256: bfec2feca5a99c887129f75d6306e1b30d2ec5d7527a2f6c4d20d6f8b61ccbd0
rsync-debugsource-3.1.3-14.el8_6.2.aarch64.rpm SHA-256: 81f10abaebe0a484e79e292ece2cc828e453624bb0696eed14a2e6a6a00cf39f

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
ppc64le
rsync-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 22217e0e42108087b78239162349f8c33e18fda9bcb6b90f951424c254281f09
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 1ed47daa6b0601b1d7728739439ac66c49b65dca479644133aaeef99a3d29b67
rsync-debugsource-3.1.3-14.el8_6.2.ppc64le.rpm SHA-256: 229f76f1e96090780401abb501daa3a94ab1a624df073d94edf41bda03baa880

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6

SRPM
rsync-3.1.3-14.el8_6.2.src.rpm SHA-256: 115eefc339ee3c9e4921dad18d1a1e22fc85854e5c1ccd0492152683015a20f8
x86_64
rsync-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 06d4674b42f53911888c984b85ea17b8f7ddbd9284b04727caf06040335025d2
rsync-daemon-3.1.3-14.el8_6.2.noarch.rpm SHA-256: 5ab0d23ca98ddf6c6bc16d6c95ee6b54a61e0131e94651ee0f7a2aa4bc0f1cf7
rsync-debuginfo-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: 9dd8a5a55fdb62903ec43943a54322fb7da7f95cbe4fa0f2eef106a88a69a3b8
rsync-debugsource-3.1.3-14.el8_6.2.x86_64.rpm SHA-256: ba9ecc6d19c3877cc6812a35930f986964d05a65cbc7bd7ef15025bc681f286b

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.