Lucene search
K

855 matches found

OSV
OSV
added 2019/01/25 6:29 p.m.28 views

CVE-2018-16881

A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable...

7.5CVSS6.4AI score0.02238EPSS
Exploits0References6
Cvelist
Cvelist
added 2019/01/25 6:0 p.m.17 views

CVE-2018-16881

A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable...

5.3CVSS7.2AI score0.02238EPSS
Exploits0References6
CVE
CVE
added 2019/01/25 6:0 p.m.341 views

CVE-2018-16881

CVE-2018-16881 affects rsyslog’s imptcp module. An attacker can send a specially crafted TCP message to imptcp, causing the daemon to crash (DoS). Vulnerable in rsyslog versions before 8.27.0; upgrade to 8.27.0+ to remediate. Some advisories (e.g., MiracleLinux AXSA) reference an integer overflow...

7.5CVSS7.1AI score0.02238EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2019/01/25 6:0 p.m.40 views

CVE-2018-16881

A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable...

7.5CVSS5.6AI score0.02238EPSS
Exploits0
Veracode
Veracode
added 2019/01/15 8:52 a.m.21 views

Denial Of Service (DoS)

rsyslog is vulnerable to denial of service DoS attacks. The vulnerability exists due to an integer overflow issue in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of...

2.1CVSS5.8AI score0.0042EPSS
Exploits0References21Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.11 views

Fedora 28 : rsyslog (2018-749f2bae28)

rebase to 8.37.0 ---------------------- - few fixes and enhancements handling journal input - now requires librelp at least 1.2.16, adding support for setting address to bind - various other rsyslog core bugfixes and stability fixes Note that Tenable Network Security has extracted the preceding...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.20 views

SUSE SLED15 / SLES15 Security Update : rsyslog (SUSE-SU-2018:1937-1)

This update for rsyslog fixes the following security issue : - CVE-2015-3243: Prevent weak permissions for generated log files, which allowed local users to obtain sensitive information bsc935393. Note that Tenable Network Security has extracted the preceding description block directly from the...

5.5CVSS6.2AI score0.00446EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.25 views

SUSE SLED15 / SLES15 Security Update : rsyslog (SUSE-SU-2018:1937-2)

This update for rsyslog fixes the following security issue : - CVE-2015-3243: Prevent weak permissions for generated log files, which allowed local users to obtain sensitive information bsc935393. Note that Tenable Network Security has extracted the preceding description block directly from the...

5.5CVSS6.2AI score0.00446EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.18 views

openSUSE: Security Advisory for rsyslog (openSUSE-SU-2018:2019-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.9AI score0.00446EPSS
Exploits0References2
OSV
OSV
added 2018/09/27 7:24 a.m.2 views

MGASA-2018-0392 Updated rsyslog packages fix security vulnerability

A buffer overflow was found in the SanitizeMsg function of rsyslogd in runtime/parser.c which may cause a denial of service or other consequences...

7.6AI score
Exploits0References3
Mageia
Mageia
added 2018/09/27 7:24 a.m.17 views

Updated rsyslog packages fix security vulnerability

A buffer overflow was found in the SanitizeMsg function of rsyslogd in runtime/parser.c which may cause a denial of service or other consequences...

4.7AI score
Exploits0References2
OpenVAS
OpenVAS
added 2018/08/19 12:0 a.m.11 views

Fedora Update for rsyslog FEDORA-2018-2818fc5308

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.27 views

Photon OS 1.0: Rsyslog / Shadow PHSA-2017-0030 (deprecated)

An update of rsyslog,shadow packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0030. The text itself is copyright C VMware, Inc...

9.1AI score0.02834EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.10 views

Fedora 27 : rsyslog (2018-2818fc5308)

rebase to 8.37.0 ---------------------- - few fixes and enhancements handling journal input - now requires librelp at least 1.2.16, adding support for setting address to bind - various other rsyslog core bugfixes and stability fixes Note that Tenable Network Security has extracted the preceding...

5.5AI score
Exploits0References1
Fedora
Fedora
added 2018/08/16 2:56 p.m.17 views

[SECURITY] Fedora 27 Update: rsyslog-8.37.0-1.fc27

Rsyslog is an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is compatible with stock sysklogd and can be used as a drop-in replacement. Rsyslog is simple to set up,...

1.5AI score
Exploits0
OpenVAS
OpenVAS
added 2018/08/13 12:0 a.m.11 views

Fedora Update for rsyslog FEDORA-2018-749f2bae28

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2018/08/11 7:13 p.m.14 views

[SECURITY] Fedora 28 Update: rsyslog-8.37.0-1.fc28

Rsyslog is an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is compatible with stock sysklogd and can be used as a drop-in replacement. Rsyslog is simple to set up,...

1.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/08/02 12:0 a.m.20 views

openSUSE Security Update : rsyslog (openSUSE-2018-789)

This update for rsyslog fixes the following issues : The following security vulnerability was addressed : CVE-2015-3243: Make sure that log files are not created world-readable bsc935393 This update was imported from the SUSE:SLE-12-SP3:Update update project. %NASLMINLEVEL 70300 C Tenable Network...

5.5CVSS6.2AI score0.00446EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/01 6:13 p.m.62 views

Security update for rsyslog (moderate)

This update for rsyslog fixes the following issues: The following security vulnerability was addressed: CVE-2015-3243: Make sure that log files are not created world-readable bsc935393 This update was imported from the SUSE:SLE-12-SP3:Update update project...

2.1CVSS3AI score0.00446EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/07/24 12:0 a.m.18 views

SUSE SLED12 / SLES12 Security Update : rsyslog (SUSE-SU-2018:2038-1)

This update for rsyslog fixes the following issues: The following security vulnerability was addressed : - CVE-2015-3243: Make sure that log files are not created world-readable bsc935393 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

5.5CVSS6.2AI score0.00446EPSS
Exploits0References4
Rows per page
Query Builder