Vulnerability CVE-2022-29154: Information

Description

An issue was discovered in rsync before 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file names. A malicious rsync server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the rsync client target directory and subdirectories (for example, overwrite the .ssh/authorized_keys file).

Severity: HIGH (7.4) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2022-29154
Published: Aug. 2, 2022
Modified: Nov. 7, 2023
Error type identifier: CWE-20

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
rsyncsisyphus3.2.5-alt0.13.2.7-alt1ALT-PU-2022-2327-1304640Fixed
rsyncsisyphus_e2k3.2.5-alt0.13.2.7-alt1ALT-PU-2022-5673-1-Fixed
rsyncsisyphus_riscv643.2.5-alt0.13.2.7-alt1ALT-PU-2022-5665-1-Fixed
rsyncp103.2.5-alt0.23.2.7-alt1ALT-PU-2022-2434-1305085Fixed
rsyncp10_e2k3.2.5-alt0.23.2.7-alt1ALT-PU-2022-5779-1-Fixed
rsyncc10f13.2.5-alt0.23.2.7-alt1ALT-PU-2022-2434-1305085Fixed
rsyncc9f23.2.5-alt0.13.2.5-alt1ALT-PU-2022-2368-1304771Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
[oss-security] 20220802 CVE-2022-29154: Rsync client-side arbitrary file write vulnerability.
  • Exploit
  • Mailing List
  • Patch
  • Third Party Advisory
https://github.com/WayneD/rsync/tags
  • Release Notes
  • Third Party Advisory
FEDORA-2022-25e4dbedf9
    FEDORA-2022-15da0cf165

        1. Configuration 1

          cpe:2.3:a:samba:rsync:*:*:*:*:*:*:*:*
          End excliding
          3.2.5

          Configuration 2

          cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
          cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
      VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
      Version: v24.4.2
      Back to top