CVE-2024-12084

high-risk

Published 2025-01-15

A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled checksum lengths (s2length) in the code. When MAX_DIGEST_LEN exceeds the fixed SUM_LENGTH (16 bytes), an attacker can write out of bounds in the sum2 buffer.

Do I need to act?

3.5% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (10)

Rsync

Almalinux

Arch Linux

Linux

Nixos

Suse Linux

Smartos

Enterprise Linux

Affected Vendors

Novell Redhat Samba Gentoo Nixos Archlinux Almalinux Tritondatacenter

References (8)

https://access.redhat.com/errata/RHBA-2025:6470

Third Party Advisory https://access.redhat.com/security/cve/CVE-2024-12084

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=2330527

Third Party Advisory https://kb.cert.org/vuls/id/952657

Mailing List http://www.openwall.com/lists/oss-security/2025/01/14/6

https://security.netapp.com/advisory/ntap-20250131-0002/

https://www.kb.cert.org/vuls/id/952657

Exploit https://github.com/google/security-research/security/advisories/GHSA-p5pg-x43v-m...

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 7/34 · Low

Exposure 16/34 · Moderate