-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 18 Dec 2024 17:11:25 +0100
Source: rsync
Binary: rsync rsync-dbgsym
Architecture: armel
Version: 3.2.7-1+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-04) <buildd_arm64-arm-ubc-04@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 rsync      - fast, versatile, remote (and local) file-copying tool
Changes:
 rsync (3.2.7-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Some checksum buffer fixes. (CVE-2024-12084)
   * Another cast when multiplying integers. (CVE-2024-12084)
   * prevent information leak off the stack (CVE-2024-12085)
   * refuse fuzzy options when fuzzy not selected (CVE-2024-12086)
   * added secure_relative_open() (CVE-2024-12086)
   * receiver: use secure_relative_open() for basis file (CVE-2024-12086)
   * disallow ../ elements in relpath for secure_relative_open (CVE-2024-12086)
   * Refuse a duplicate dirlist. (CVE-2024-12087)
   * range check dir_ndx before use (CVE-2024-12087)
   * make --safe-links stricter (CVE-2024-12088)
   * fixed symlink race condition in sender (CVE-2024-12747)
   * raise protocol version to 32
Checksums-Sha1:
 faf0abcb6c6cd44ee8e70cbf9e1f1dfbe607e632 505736 rsync-dbgsym_3.2.7-1+deb12u1_armel.deb
 83561bc937cee4ff47ead3f22f6c8ff91c5f1a33 6739 rsync_3.2.7-1+deb12u1_armel-buildd.buildinfo
 8f46a5a756ba6bdb7d91d676c1f0612ba36f3ed1 393296 rsync_3.2.7-1+deb12u1_armel.deb
Checksums-Sha256:
 99d86ef67fd5c1add688a769a1f50e7f74846cf614c742e90e6424838a3badea 505736 rsync-dbgsym_3.2.7-1+deb12u1_armel.deb
 8b2024565a3f65f404359b3b066792b35f7315f01ef40a6399492782d13dae8d 6739 rsync_3.2.7-1+deb12u1_armel-buildd.buildinfo
 29b879bf540dae069fcb05041f5739468c0b3ab5b47f6ac09a88b90a1793b821 393296 rsync_3.2.7-1+deb12u1_armel.deb
Files:
 c165c1436a5469fd4f773d4ecc4dd602 505736 debug optional rsync-dbgsym_3.2.7-1+deb12u1_armel.deb
 841678007de2e81e34b5023b3dbc91e8 6739 net optional rsync_3.2.7-1+deb12u1_armel-buildd.buildinfo
 53aea13ab991da21b55d10163106c32b 393296 net optional rsync_3.2.7-1+deb12u1_armel.deb

-----BEGIN PGP SIGNATURE-----
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=vMPr
-----END PGP SIGNATURE-----