CLSA-2026-1779694460

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1779694460.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1779694460
Upstream
  • CVE-2026-29518
Published
2026-05-25T07:34:24Z
Modified
2026-06-04T09:46:50.271930280Z
Summary
Fix CVE(s): CVE-2026-29518
Details
  • SECURITY UPDATE: daemon-no-chroot TOCTOU symlink race
    • debian/patches/CVE-2026-29518.patch: track per-module chroot in amchrooted and usesecuresymlinks; route the sender's read-path open, the receiver's basis-file open, mkstemp, and inplace write through securerelativeopen() / securemkstemp()
    • CVE-2026-29518
References

Affected packages

TuxCare:Ubuntu:16.04 / rsync

Package

Name
rsync
Purl
pkg:deb/tuxcare/rsync?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1.1-3ubuntu1.3+tuxcare.els9

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1779694460.json"