Sync from SUSE:SLFO:1.1 rsync revision 19df3377c90305694142fee51adebd58

rsync-CVE-2025-10158.patch

@@ -0,0 +1,27 @@
+From 797e17fc4a6f15e3b1756538a9f812b63942686f Mon Sep 17 00:00:00 2001
+From: Andrew Tridgell <andrew@tridgell.net>
+Date: Sat, 23 Aug 2025 17:26:53 +1000
+Subject: [PATCH] fixed an invalid access to files array
+
+this was found by Calum Hutton from Rapid7. It is a real bug, but
+analysis shows it can't be leverged into an exploit. Worth fixing
+though.
+
+Many thanks to Calum and Rapid7 for finding and reporting this
+---
+ sender.c | 2 ++
+ 1 file changed, 2 insertions(+)
+
+diff --git a/sender.c b/sender.c
+index a4d46c39e..b1588b701 100644
+--- a/sender.c
++++ b/sender.c
+@@ -262,6 +262,8 @@ void send_files(int f_in, int f_out)
+ 
+ 		if (ndx - cur_flist->ndx_start >= 0)
+ 			file = cur_flist->files[ndx - cur_flist->ndx_start];
++		else if (cur_flist->parent_ndx < 0)
++			exit_cleanup(RERR_PROTOCOL);
+ 		else
+ 			file = dir_flist->files[cur_flist->parent_ndx];
+ 		if (F_PATHNAME(file)) {

rsync.changes

@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Tue Dec 16 12:40:48 UTC 2025 - David Anes <david.anes@suse.com>
+
+- Security update (CVE-2025-10158, bsc#1254441): rsync: Out of
+  bounds array access via negative index
+  - Add rsync-CVE-2025-10158.patch
+
 -------------------------------------------------------------------
 Thu Jan 23 10:55:40 UTC 2025 - Angel Yankov <angel.yankov@suse.com>
 

rsync.spec

@@ -77,6 +77,9 @@ Patch14:	rsync-CVE-2024-12747.patch
 # PATCH-FIX-UPSTREAM: bsc#1235895
 Patch15:	rsync-fix-FLAG_GOT_DIR_FLIST.patch
 Patch16:	rsync-protocol-version-32.patch
+# bsc#1254441, CVE-2025-10158: rsync: Out of bounds array access via negative index
+# https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f
+Patch17:         rsync-CVE-2025-10158.patch
 BuildRequires:  autoconf
 BuildRequires:  automake
 BuildRequires:  c++_compiler