Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-3634HistoryNov 02, 2014 - 12:55 a.m.
CVE-2014-3634
2014-11-0200:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.228 Low
EPSS
Percentile
96.5%
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | inetutils | < 2:1.9.2.39.3a460-1 | inetutils_2:1.9.2.39.3a460-1_all.deb |
| Debian | 11 | all | inetutils | < 2:1.9.2.39.3a460-1 | inetutils_2:1.9.2.39.3a460-1_all.deb |
| Debian | 10 | all | inetutils | < 2:1.9.2.39.3a460-1 | inetutils_2:1.9.2.39.3a460-1_all.deb |
| Debian | 999 | all | inetutils | < 2:1.9.2.39.3a460-1 | inetutils_2:1.9.2.39.3a460-1_all.deb |
| Debian | 13 | all | inetutils | < 2:1.9.2.39.3a460-1 | inetutils_2:1.9.2.39.3a460-1_all.deb |
| Debian | 12 | all | rsyslog | < 8.4.1-1 | rsyslog_8.4.1-1_all.deb |
| Debian | 11 | all | rsyslog | < 8.4.1-1 | rsyslog_8.4.1-1_all.deb |
| Debian | 10 | all | rsyslog | < 8.4.1-1 | rsyslog_8.4.1-1_all.deb |
| Debian | 999 | all | rsyslog | < 8.4.1-1 | rsyslog_8.4.1-1_all.deb |
| Debian | 13 | all | rsyslog | < 8.4.1-1 | rsyslog_8.4.1-1_all.deb |
Related
nessus
nessus
Fedora 21 : sysklogd-1.5-18.fc21 (2014-12875)
2014-11-03 00:00:00
Oracle Linux 5 / 6 : rsyslog / rsyslog5 (ELSA-2014-1671)
2014-10-21 00:00:00
RHEL 7 : rsyslog (RHSA-2014:1397)
2014-10-14 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: sysklogd-1.5-18.fc19
2014-10-27 03:28:59
[SECURITY] Fedora 20 Update: rsyslog-7.4.8-2.fc20
2014-10-16 02:02:22
[SECURITY] Fedora 21 Update: rsyslog-7.4.10-5.fc21
2014-10-16 01:59:57
ibm
ibm
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:02:37
redhat
redhat
(RHSA-2014:1397) Important: rsyslog security update
2014-10-13 00:00:00
(RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update
2014-10-20 00:00:00
(RHSA-2014:1654) Important: rsyslog7 security update
2014-10-16 00:00:00
openvas
openvas
Fedora Update for sysklogd FEDORA-2014-12910
2014-10-27 00:00:00
Oracle: Security Advisory (ELSA-2014-1654)
2015-10-06 00:00:00
Amazon Linux: Security Advisory (ALAS-2014-445)
2015-09-08 00:00:00
oraclelinux
oraclelinux
rsyslog5 and rsyslog security update
2014-10-20 00:00:00
rsyslog security update
2014-10-13 00:00:00
rsyslog7 security update
2014-10-21 00:00:00
prion
prion
Out-of-bounds
2014-11-02 00:55:00
Design/Logic Flaw
2014-10-13 18:55:00
Integer overflow
2014-11-02 00:55:00
amazon
amazon
Medium: rsyslog
2014-11-11 10:26:00
Important: rsyslog
2022-05-31 23:47:00
Important: rsyslog
2022-05-31 23:50:00
archlinux
archlinux
rsyslog: remote denial of service
2014-10-01 00:00:00
f5
f5
K42903299 : rsyslog: remote syslog PRI vulnerability CVE-2014-3634
2017-07-06 00:00:00
mageia
mageia
Updated rsyslog packages fix CVE-2014-3634
2014-10-09 18:39:32
freebsd
freebsd
rsyslog -- remote syslog PRI vulnerability
2014-09-30 00:00:00
osv
osv
rsyslog - security update
2014-09-30 00:00:00
rsyslog - security update
2014-10-08 00:00:00
rsyslog - regression update
2014-10-19 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3040-1] rsyslog security update
2014-10-05 00:00:00
rsyslog DoS
2014-10-05 00:00:00
centos
centos
rsyslog security update
2014-10-13 19:45:27
rsyslog7 security update
2014-10-20 18:15:12
rsyslog, rsyslog5 security update
2014-10-21 15:10:11
cve
cve
debian
debian
[SECURITY] [DSA 3040-1] rsyslog security update
2014-09-30 21:14:26
[SECURITY] [DSA 3047-1] rsyslog security update
2014-10-08 11:12:07
[SECURITY] [DLA 72-1] rsylog security update
2014-10-19 17:00:31
altlinux
altlinux
Security fix for the ALT Linux 7 package rsyslog version 7.6.7-alt0.M70P.1
2014-10-13 00:00:00
ubuntu
ubuntu
Rsyslog vulnerabilities
2014-10-09 00:00:00
suse
suse
Security update for rsyslog (important)
2014-10-15 00:04:46
debiancve
debiancve
CVE-2014-3683
2014-11-02 00:55:00
ubuntucve
ubuntucve
CVE-2014-3634
2014-10-01 00:00:00
CVE-2014-3683
2014-10-02 00:00:00
aix
aix
Open Source RSyslog vulnerability
2014-11-14 15:31:13
gentoo
gentoo
RSYSLOG: Denial of service
2014-12-24 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.228 Low
EPSS
Percentile
96.5%
Related for DEBIANCVE:CVE-2014-3634