{ "document": { "aggregate_severity": { "text": "Medium" }, "category": "csaf_vex", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/oraclelinux6els/vex/2026/cve-2026-43619-els_os-oraclelinux6els.json" } ], "tracking": { "current_release_date": "2026-05-22T16:06:18Z", "generator": { "date": "2026-05-22T16:06:18Z", "engine": { "name": "pyCSAF" } }, "id": "CVE-2026-43619-ELS_OS-ORACLELINUX6ELS", "initial_release_date": "2026-05-20T02:16:00Z", "revision_history": [ { "date": "2026-05-20T02:16:00Z", "number": "1", "summary": "Initial version" }, { "date": "2026-05-22T16:06:18Z", "number": "2", "summary": "Official Publication" } ], "status": "final", "version": "2" }, "title": "Security update on CVE-2026-43619" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Oracle Linux 6", "product": { "name": "Oracle Linux 6", "product_id": "Oracle-Linux-6", "product_identification_helper": { "cpe": "cpe:2.3:o:oracle:linux:6:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "Oracle Linux" }, { "branches": [ { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.x86_64", "product_id": "rsync-0:3.0.6-12.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/oracle/rsync@3.0.6-12.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Oracle Corporation" }, { "branches": [ { "branches": [ { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els2?arch=x86_64" } } }, { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els3?arch=x86_64" } } }, { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els6?arch=x86_64" } } }, { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els4?arch=x86_64" } } }, { "category": "product_version", "name": "rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "product": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "product_id": "rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/cloudlinux/rsync@3.0.6-12.el6.tuxcare.els7?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "CloudLinux" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "relates_to_product_reference": "Oracle-Linux-6" }, { "category": "default_component_of", "full_product_name": { "name": "rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64 as a component of Oracle Linux 6", "product_id": "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64" }, "product_reference": "rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "relates_to_product_reference": "Oracle-Linux-6" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-43619", "cwe": { "id": "CWE-59", "name": "Improper Link Resolution Before File Access ('Link Following')" }, "notes": [ { "category": "description", "text": "Rsync version 3.4.2 and prior contain symlink race condition vulnerabilities in path-based system calls including chmod, lchown, utimes, rename, unlink, mkdir, symlink, mknod, link, rmdir, and lstat that allow local attackers to redirect operations to files outside the exported rsync module. Attackers with local filesystem access can exploit the timing window between path resolution and syscall execution by swapping symlinks to apply sender-supplied permissions, ownership, timestamps, or filenames to arbitrary files outside the intended module boundary on rsync daemons configured with 'use chroot = no'.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "known_affected": [ "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-43619" }, { "category": "external", "summary": "https://github.com/RsyncProject/rsync/releases/tag/v3.4.3", "url": "https://github.com/RsyncProject/rsync/releases/tag/v3.4.3" }, { "category": "external", "summary": "https://github.com/RsyncProject/rsync/security/advisories/GHSA-4h9m-w5ff-j735", "url": "https://github.com/RsyncProject/rsync/security/advisories/GHSA-4h9m-w5ff-j735" }, { "category": "external", "summary": "https://www.vulncheck.com/advisories/rsync-symlink-race-condition-via-path-based-syscalls", "url": "https://www.vulncheck.com/advisories/rsync-symlink-race-condition-via-path-based-syscalls" } ], "release_date": "2026-05-20T02:16:00Z", "remediations": [ { "category": "no_fix_planned", "date": "2026-05-21T12:08:35.370821Z", "details": "Deprioritize: Exploitation requires local filesystem access to the host and only applies to rsync when run as a daemon with the non-default setting “use chroot = no”; rsync used over SSH or daemons retaining the default chroot behavior are not affected. It is a high‑complexity TOCTOU symlink race that depends on precisely winning a timing window, further reducing practical exploitability. Given these constraints, exposure in centrally managed VM/server deployments is limited, making this a low-priority issue.", "product_ids": [ "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1" }, "products": [ "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els1.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els2.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els3.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els4.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els5.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els6.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.tuxcare.els7.x86_64", "Oracle-Linux-6:rsync-0:3.0.6-12.el6.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] } ] }