Maintenance Update: rsync Vulnerabilities Patched

Updates

We want to inform you that all StackLinux client servers affected by the recently disclosed rsync vulnerabilities (CVE-2024-12084, CVE-2024-12088, and CVE-2024-12747) have been successfully patched during maintenance windows on Tuesday, January 14th, and Wednesday, January 15th, 2025.

Our team worked diligently to ensure that all systems were updated and secured against these vulnerabilities, which included potential remote code execution risks. We performed these updates with no downtime.

If you have any questions or concerns, please reply to this email.

Thank you for your trust in StackLinux!

Sincerely,
The StackLinux Team

References:

OpenWall OSS Security Mailing List Announcement
CERT KB Vulnerability Note
FortiGuard Threat Signal Report
Rsync Mailing List Announcement

January 16, 2025 · 08:51 AM EST

← Back