cve-2026-43617

On May 20, 2026, CVE-2026-43617 was published for rsync 3.4.2 and earlier, describing a medium-severity authorization bypass in rsync daemon hostname-based access controls when the service is configured with chroot. The bug is not the kind of remote-code-execution siren that sends every SOC...