An update for rsync is now available for HCE 2.0

HCE2-SA-2026-0035 An update for rsync is now available for HCE 2.0 Moderate HCE 2.0 Security Fix(es): A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue. (CVE-2025-10158) HCE 2.0 rsync-3.2.3-2.r10.hce2.x86_64.rpm rsync-help-3.2.3-2.r10.hce2.noarch.rpm rsync-3.2.3-2.r10.hce2.aarch64.rpm