Rclone Release v1.73.2

Releases
1

Rclone 1.73.2 has been released. Find it in the rclone downloads or use rclone selfupdate to upgrade.

This is a patch release to fix multiple upstream CVEs and a few other small things.

v1.73.2 - 2026-03-06

See commits

  • Bug Fixes
    • build
      • Update to go 1.25.8 to fix CVE-2026-27137 CVE-2026-27138 CVE-2026-25679 CVE-2026-27142 (Nick Craig-Wood)
      • Update github.com/cloudflare/circl to v1.6.3 to fix CVE-2026-1229 (Nick Craig-Wood)
      • Update to golang.org/x/net v0.51.0 to fix CVE-2026-27141 (Nick Craig-Wood)
    • docs fixes:
      • bisync: Add group Sync to the bisync command (Jan-Philipp Reßler)
      • Note that --use-server-modtime only works on some backends (Nick Craig-Wood)
      • Document unsupported S3 object keys with double slashes (Adam Kasztenny)
      • Fix headers hierarchy for mount.md (Dark Dragon)
      • Fix new drive flag typo in changelog (razorloves)
  • Archive
    • Extract: fix extraction with "./" prefix from tar entry paths (Varun Chawla)
  • Drime
    • Fix chunk-uploaded files ignoring workspace ID (a1pcm)
  • Internxt
    • Fix Entry doesn't belong in directory errors on windows (jzunigax2)
  • WebDAV
    • Escape reserved characters in URL path segments (Varun Chawla)
    • Add missing headers for CORS (Romāns Potašovs)
2 Likes