-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 18 Dec 2024 17:11:25 +0100
Source: rsync
Binary: rsync rsync-dbgsym
Architecture: i386
Version: 3.2.7-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) <buildd_amd64-x86-ubc-02@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes:
 rsync (3.2.7-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Some checksum buffer fixes. (CVE-2024-12084)
   * Another cast when multiplying integers. (CVE-2024-12084)
   * prevent information leak off the stack (CVE-2024-12085)
   * refuse fuzzy options when fuzzy not selected (CVE-2024-12086)
   * added secure_relative_open() (CVE-2024-12086)
   * receiver: use secure_relative_open() for basis file (CVE-2024-12086)
   * disallow ../ elements in relpath for secure_relative_open (CVE-2024-12086)
   * Refuse a duplicate dirlist. (CVE-2024-12087)
   * range check dir_ndx before use (CVE-2024-12087)
   * make --safe-links stricter (CVE-2024-12088)
   * fixed symlink race condition in sender (CVE-2024-12747)
   * raise protocol version to 32
Checksums-Sha1:
 3b8f122153d6fb9adb6199653cc147a1657362dc 459444 rsync-dbgsym_3.2.7-1+deb12u1_i386.deb
 fce2b3e315527dc6f9a21ae4ff1dcbc7f6d37fc3 6806 rsync_3.2.7-1+deb12u1_i386-buildd.buildinfo
 542fed8a0c9688437f5b652c8736e8e08bc518c6 427168 rsync_3.2.7-1+deb12u1_i386.deb
Checksums-Sha256:
 c29d0c3bc6122ce46d086d0505b718981c86798b36ceac816ab301d9698a8806 459444 rsync-dbgsym_3.2.7-1+deb12u1_i386.deb
 24d45ff687dcd20542267bfb571d4a79bc8a32f7d7a3c6265378db3398b5e629 6806 rsync_3.2.7-1+deb12u1_i386-buildd.buildinfo
 0914a813fc9341aee7493ffd80b3f7032cec52c12b2ce3460b7580c52fa6499a 427168 rsync_3.2.7-1+deb12u1_i386.deb
Files:
 048cb11864a25c6172a352c4dea6fb59 459444 debug optional rsync-dbgsym_3.2.7-1+deb12u1_i386.deb
 69e9e04cd18d661331034ce261f4da42 6806 net optional rsync_3.2.7-1+deb12u1_i386-buildd.buildinfo
 a9eeea57110c6399e5d625771bb434a8 427168 net optional rsync_3.2.7-1+deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=EicU
-----END PGP SIGNATURE-----