A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The
malicious
rsync client requires at least read access to the remote rsync module in order to trigger the issue.
{
"license": "CC-BY-4.0",
"sources": [
{
"published": "2025-11-18T15:16:25.433Z",
"database_specific": {
"status": "Deferred"
},
"id": "CVE-2025-10158",
"url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-10158",
"html_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-10158",
"imported": "2026-06-25T17:27:26.556Z",
"modified": "2026-06-17T08:27:47.720Z"
},
{
"published": "2025-11-18T15:30:53Z",
"url": "https://api.github.com/advisories/GHSA-3rvc-qcwh-fhqv",
"id": "GHSA-3rvc-qcwh-fhqv",
"html_url": "https://github.com/advisories/GHSA-3rvc-qcwh-fhqv",
"imported": "2026-06-25T17:27:26.886Z",
"modified": "2025-11-18T15:30:54Z"
},
{
"published": "2025-11-18T14:24:19Z",
"url": "https://euvdservices.enisa.europa.eu/api/enisaid?id=EUVD-2025-198005",
"id": "EUVD-2025-198005",
"html_url": "https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-198005",
"imported": "2026-06-25T17:27:24.697Z",
"modified": "2025-11-19T16:48:56Z"
}
]
}