Lucene search
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2022-2331-1.NASLHistoryJul 08, 2022 - 12:00 a.m.
SUSE SLES12 Security Update : rsyslog (SUSE-SU-2022:2331-1)
2022-07-0800:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
56
The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2331-1 advisory.
- Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used. This can result in a segfault or some other malfunction. As of our understanding, this vulnerability can not be used for remote code execution. But there may still be a slight chance for experts to do that. The bug occurs when the octet count is read.
While there is a check for the maximum number of octets, digits are written to a heap buffer even when the octet count is over the maximum, This can be used to overrun the memory buffer. However, once the sequence of digits stop, no additional characters can be added to the buffer. In our opinion, this makes remote exploits impossible or at least highly complex. Octet-counted framing is one of two potential framing modes. It is relatively uncommon, but enabled by default on receivers. Modulesimtcp,imptcp,imgssapi, andimhttpare used for regular syslog message reception. It is best practice not to directly expose them to the public. When this practice is followed, the risk is considerably lower. Moduleimdiagis a diagnostics module primarily intended for testbench runs. We do not expect it to be present on any production installation. Octet-counted framing is not very common. Usually, it needs to be specifically enabled at senders. If users do not need it, they can turn it off for the most important modules. This will mitigate the vulnerability. (CVE-2022-24903)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# SUSE update advisory SUSE-SU-2022:2331-1. The text itself
# is copyright (C) SUSE.
##
include('compat.inc');
if (description)
{
script_id(162924);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/14");
script_cve_id("CVE-2022-24903");
script_xref(name:"SuSE", value:"SUSE-SU-2022:2331-1");
script_name(english:"SUSE SLES12 Security Update : rsyslog (SUSE-SU-2022:2331-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by a vulnerability as referenced
in the SUSE-SU-2022:2331-1 advisory.
- Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap
buffer overflow when octet-counted framing is used. This can result in a segfault or some other
malfunction. As of our understanding, this vulnerability can not be used for remote code execution. But
there may still be a slight chance for experts to do that. The bug occurs when the octet count is read.
While there is a check for the maximum number of octets, digits are written to a heap buffer even when the
octet count is over the maximum, This can be used to overrun the memory buffer. However, once the sequence
of digits stop, no additional characters can be added to the buffer. In our opinion, this makes remote
exploits impossible or at least highly complex. Octet-counted framing is one of two potential framing
modes. It is relatively uncommon, but enabled by default on receivers. Modules `imtcp`, `imptcp`,
`imgssapi`, and `imhttp` are used for regular syslog message reception. It is best practice not to
directly expose them to the public. When this practice is followed, the risk is considerably lower. Module
`imdiag` is a diagnostics module primarily intended for testbench runs. We do not expect it to be present
on any production installation. Octet-counted framing is not very common. Usually, it needs to be
specifically enabled at senders. If users do not need it, they can turn it off for the most important
modules. This will mitigate the vulnerability. (CVE-2022-24903)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1199061");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2022-24903");
# https://lists.suse.com/pipermail/sle-security-updates/2022-July/011474.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e5e2ea5e");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-24903");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/05/06");
script_set_attribute(attribute:"patch_publication_date", value:"2022/07/07");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/07/08");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-diag-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-gssapi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-gtls");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-mmnormalize");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-pgsql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-relp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-snmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rsyslog-module-udpspoof");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item("Host/SuSE/release");
if (isnull(os_release) || os_release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
var os_ver = pregmatch(pattern: "^(SLE(S|D)(?:_SAP)?\d+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12|SLES_SAP12)$", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLES12 / SLES_SAP12', 'SUSE (' + os_ver + ')');
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE (' + os_ver + ')', cpu);
var service_pack = get_kb_item("Host/SuSE/patchlevel");
if (isnull(service_pack)) service_pack = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(3|4)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES12 SP3/4", os_ver + " SP" + service_pack);
if (os_ver == "SLES_SAP12" && (! preg(pattern:"^(3|4)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES_SAP12 SP3/4", os_ver + " SP" + service_pack);
var pkgs = [
{'reference':'rsyslog-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-diag-tools-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-doc-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-gssapi-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-gtls-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-mysql-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-pgsql-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-relp-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-snmp-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-module-udpspoof-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'rsyslog-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-diag-tools-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-doc-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-gssapi-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-gtls-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-mmnormalize-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-mysql-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-pgsql-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-relp-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-snmp-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-module-udpspoof-8.24.0-3.58.2', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'rsyslog-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-diag-tools-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-diag-tools-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-doc-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-doc-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-gssapi-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-gssapi-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-gtls-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-gtls-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-mysql-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-mysql-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-pgsql-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-pgsql-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-relp-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-relp-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-snmp-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-snmp-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-udpspoof-8.24.0-3.58.2', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-module-udpspoof-8.24.0-3.58.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'rsyslog-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-diag-tools-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-doc-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-gssapi-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-gtls-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-mmnormalize-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-mysql-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-pgsql-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-relp-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-snmp-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'rsyslog-module-udpspoof-8.24.0-3.58.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']}
];
var ltss_caveat_required = FALSE;
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var exists_check = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && _release) {
if (exists_check) {
var check_flag = 0;
foreach var check (exists_check) {
if (!rpm_exists(release:_release, rpm:check)) continue;
if ('ltss' >< tolower(check)) ltss_caveat_required = TRUE;
check_flag++;
}
if (!check_flag) continue;
}
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
var ltss_plugin_caveat = NULL;
if(ltss_caveat_required) ltss_plugin_caveat = '\n' +
'NOTE: This vulnerability check contains fixes that apply to\n' +
'packages only available in SUSE Enterprise Linux Server LTSS\n' +
'repositories. Access to these package security updates require\n' +
'a paid SUSE LTSS subscription.\n';
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + ltss_plugin_caveat
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'rsyslog / rsyslog-diag-tools / rsyslog-doc / rsyslog-module-gssapi / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | rsyslog | p-cpe:/a:novell:suse_linux:rsyslog |
| novell | suse_linux | rsyslog-diag-tools | p-cpe:/a:novell:suse_linux:rsyslog-diag-tools |
| novell | suse_linux | rsyslog-doc | p-cpe:/a:novell:suse_linux:rsyslog-doc |
| novell | suse_linux | rsyslog-module-gssapi | p-cpe:/a:novell:suse_linux:rsyslog-module-gssapi |
| novell | suse_linux | rsyslog-module-gtls | p-cpe:/a:novell:suse_linux:rsyslog-module-gtls |
| novell | suse_linux | rsyslog-module-mmnormalize | p-cpe:/a:novell:suse_linux:rsyslog-module-mmnormalize |
| novell | suse_linux | rsyslog-module-mysql | p-cpe:/a:novell:suse_linux:rsyslog-module-mysql |
| novell | suse_linux | rsyslog-module-pgsql | p-cpe:/a:novell:suse_linux:rsyslog-module-pgsql |
| novell | suse_linux | rsyslog-module-relp | p-cpe:/a:novell:suse_linux:rsyslog-module-relp |
| novell | suse_linux | rsyslog-module-snmp | p-cpe:/a:novell:suse_linux:rsyslog-module-snmp |
Related
nessus
nessus
Rocky Linux 9 : rsyslog (RLSA-2022:4795)
2023-11-06 00:00:00
EulerOS 2.0 SP3 : rsyslog (EulerOS-SA-2022-2633)
2022-10-28 00:00:00
osv
osv
rsyslog - security update
2022-05-28 00:00:00
rsyslog vulnerability
2022-05-24 16:21:20
CVE-2022-24903
2022-05-06 00:15:07
cloudlinux
cloudlinux
Fixed CVE-2022-24903 in rsyslog
2022-06-08 19:49:37
redhat
redhat
(RHSA-2022:4808) Important: rsyslog and rsyslog7 security update
2022-05-31 07:57:01
(RHSA-2022:4795) Important: rsyslog security update
2022-05-30 07:22:28
(RHSA-2022:4803) Important: rsyslog security update
2022-05-30 07:25:34
oraclelinux
oraclelinux
rsyslog security update
2022-06-30 00:00:00
rsyslog security update
2022-05-31 00:00:00
rsyslog security update
2022-05-30 00:00:00
redhatcve
redhatcve
CVE-2022-24903
2022-05-05 13:36:34
cbl_mariner
cbl_mariner
CVE-2022-24903 affecting package rsyslog 8.2108.0-2
2022-06-03 17:54:05
CVE-2022-24903 affecting package rsyslog 8.37.0-6
2022-06-15 17:03:08
prion
prion
Heap overflow
2022-05-06 00:15:00
fedora
fedora
[SECURITY] Fedora 35 Update: rsyslog-8.2204.0-1.fc35
2022-05-17 01:56:45
[SECURITY] Fedora 36 Update: rsyslog-8.2204.0-1.fc36
2022-05-17 01:32:39
cve
cve
CVE-2022-24903
2022-05-06 00:15:00
almalinux
almalinux
Important: rsyslog security update
2022-05-30 07:24:07
rosalinux
rosalinux
Advisory ROSA-SA-2024-2381
2024-03-26 11:41:42
mageia
mageia
Updated rsyslog packages fix security vulnerability
2022-05-08 10:58:48
alpinelinux
alpinelinux
CVE-2022-24903
2022-05-06 00:15:00
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a buffer overflow in rsyslog [ CVE-2022-24903]
2024-03-28 21:59:28
veracode
veracode
Buffer Overflow
2022-05-11 10:43:59
suse
suse
Security update for rsyslog (important)
2022-05-09 00:00:00
broadcom
broadcom
ubuntucve
ubuntucve
CVE-2022-24903
2022-05-05 00:00:00
ubuntu
ubuntu
Rsyslog vulnerability
2022-05-24 00:00:00
Rsyslog vulnerability
2022-05-05 00:00:00
debiancve
debiancve
CVE-2022-24903
2022-05-06 00:15:00
debian
debian
[SECURITY] [DSA 5150-1] rsyslog security update
2022-05-28 19:26:20
[SECURITY] [DLA 3016-1] rsyslog security update
2022-05-20 21:58:25
freebsd
freebsd
rsyslog8 -- heap buffer overflow on receiving TCP syslog
2022-05-05 00:00:00
rocky
rocky
rsyslog security update
2022-05-30 07:24:07
rsyslog security update
2022-05-30 07:22:28
redos
redos
ROS-20240403-16
2024-04-03 00:00:00
amazon
amazon
Important: rsyslog
2022-05-31 23:47:00
Important: rsyslog
2022-05-31 23:50:00
ics
ics
​Siemens RUGGEDCOM ROX
2023-07-13 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Related for SUSE_SU-2022-2331-1.NASL