-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 18 Dec 2024 17:11:25 +0100
Source: rsync
Binary: rsync rsync-dbgsym
Architecture: amd64
Version: 3.2.7-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes:
 rsync (3.2.7-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Some checksum buffer fixes. (CVE-2024-12084)
   * Another cast when multiplying integers. (CVE-2024-12084)
   * prevent information leak off the stack (CVE-2024-12085)
   * refuse fuzzy options when fuzzy not selected (CVE-2024-12086)
   * added secure_relative_open() (CVE-2024-12086)
   * receiver: use secure_relative_open() for basis file (CVE-2024-12086)
   * disallow ../ elements in relpath for secure_relative_open (CVE-2024-12086)
   * Refuse a duplicate dirlist. (CVE-2024-12087)
   * range check dir_ndx before use (CVE-2024-12087)
   * make --safe-links stricter (CVE-2024-12088)
   * fixed symlink race condition in sender (CVE-2024-12747)
   * raise protocol version to 32
Checksums-Sha1:
 51c158b3940e62aa2d3f0f68358b179fcd2fcf57 518836 rsync-dbgsym_3.2.7-1+deb12u1_amd64.deb
 14e22d8d1e59650458dd7de5f70bc0e1ff1b85c8 6866 rsync_3.2.7-1+deb12u1_amd64-buildd.buildinfo
 23b0712bd6b8f633373cb8b5e4c84edaa2b97e9a 418756 rsync_3.2.7-1+deb12u1_amd64.deb
Checksums-Sha256:
 e246583aa0d807e836cafa690812bbdda15280d873a9e477aa7b70b17b7f7cbf 518836 rsync-dbgsym_3.2.7-1+deb12u1_amd64.deb
 272af47d04386642e07260b8e190474441f1269a4a0cad7763c8dffec29eefab 6866 rsync_3.2.7-1+deb12u1_amd64-buildd.buildinfo
 1de7fdda932ee556c333d1d4c4dc7ffdbe5f451e0dc134ea2b26beb38f951296 418756 rsync_3.2.7-1+deb12u1_amd64.deb
Files:
 0b3595d970a30484a4dbf118e409eceb 518836 debug optional rsync-dbgsym_3.2.7-1+deb12u1_amd64.deb
 50b9f520e47dc4fa1db7424b0c56f6f6 6866 net optional rsync_3.2.7-1+deb12u1_amd64-buildd.buildinfo
 3e19c50aba378955fb72a03460cfe8c4 418756 net optional rsync_3.2.7-1+deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=+eoz
-----END PGP SIGNATURE-----