Lucene search
K

855 matches found

securityvulns
securityvulns
added 2013/07/08 12:0 a.m.60 views

LSE Leading Security Experts GmbH - LSE-2013-07-03 - rsyslog ElasticSearch Plugin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 === LSE Leading Security Experts GmbH - Security Advisory 2013-07-03 === rsyslog ElasticSearch Plugin - Double Free Memory Corruption - ------------------------------------------------------------ Affected Version ================ rsyslog 7.4.0 stable...

6.8CVSS0.0233EPSS
Exploits0
securityvulns
securityvulns
added 2013/07/08 12:0 a.m.37 views

ElasticSearch double free

ElasticSearch rsyslog plugin doble free...

6.8CVSS2.1AI score0.0233EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2012/09/25 11:55 p.m.13 views

CVE-2011-4623

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...

2.1CVSS6.3AI score0.0042EPSS
Exploits0References12
OSV
OSV
added 2012/09/25 11:55 p.m.2 views

CVE-2011-4623

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...

6.3AI score
Exploits0References13
OSV
OSV
added 2012/09/25 11:55 p.m.2 views

DEBIAN-CVE-2011-4623

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...

2.1CVSS7AI score0.0042EPSS
Exploits0References1
Prion
Prion
added 2012/09/25 11:55 p.m.14 views

Integer overflow

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...

2.1CVSS6.7AI score0.0042EPSS
Exploits0References12Affected Software1
CVE
CVE
added 2012/09/25 11:0 p.m.74 views

CVE-2011-4623

CVE-2011-4623 — rsyslog imfile integer overflow : The rsyslog daemon’s imfile module is affected by an overflow in rsCStrExtendBuf (runtime/stringbuf.c). This occurs in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4, allowing a local user to trigger a heap-based buffer overflow ...

2.1CVSS6.3AI score0.0042EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2012/09/25 11:0 p.m.31 views

CVE-2011-4623

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...

6.2AI score0.0042EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2012/09/25 11:0 p.m.24 views

CVE-2011-4623

Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...

2.1CVSS4.2AI score0.0042EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.25 views

Scientific Linux Security Update : rsyslog on SL6.x i386/x86_64 (20120620)

The rsyslog packages provide an enhanced, multi-threaded syslog daemon. A numeric truncation error, leading to a heap-based buffer overflow, was found in the way the rsyslog imfile module processed text files containing long lines. An attacker could use this flaw to crash the rsyslogd daemon or,...

2.1CVSS6.3AI score0.0042EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.17 views

Scientific Linux Security Update : rsyslog on SL6.x i386/x86_64

The rsyslog packages provide an enhanced, multi-threaded syslog daemon that supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine grained output format control. A two byte buffer overflow flaw was found in the rsyslog daemon's parseLegacySyslogMsg...

5CVSS5.7AI score0.20759EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.25 views

CentOS Update for rsyslog CESA-2012:0796 centos6

Check for the Version of rsyslog OpenVAS Vulnerability Test CentOS Update for rsyslog CESA-2012:0796 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

2.1CVSS6.4AI score0.0042EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/07/30 12:0 a.m.21 views

CentOS Update for rsyslog CESA-2012:0796 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

2.1CVSS5.2AI score0.0042EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/07/11 12:0 a.m.22 views

CentOS 6 : rsyslog (CESA-2012:0796)

Updated rsyslog packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...

2.1CVSS6.3AI score0.0042EPSS
Exploits0References2
Cent OS
Cent OS
added 2012/07/10 5:21 p.m.67 views

rsyslog security update

CentOS Errata and Security Advisory CESA-2012:0796 Updated rsyslog packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common...

2.1CVSS6.3AI score0.0042EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2012/07/09 12:0 a.m.17 views

RedHat Update for rsyslog RHSA-2011:1247-01

Check for the Version of rsyslog OpenVAS Vulnerability Test RedHat Update for rsyslog RHSA-2011:1247-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

5CVSS6.3AI score0.20759EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2012/07/09 12:0 a.m.22 views

RedHat Update for rsyslog RHSA-2011:1247-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6.5AI score0.20759EPSS
Exploits2References2
Amazon
Amazon
added 2012/07/06 12:0 a.m.33 views

Medium: rsyslog

Issue Overview: A numeric truncation error, leading to a heap-based buffer overflow, was found in the way the rsyslog imfile module processed text files containing long lines. An attacker could use this flaw to crash the rsyslogd daemon or, possibly, execute arbitrary code with the privileges of...

2.1CVSS7.6AI score0.0042EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2012/06/28 12:0 a.m.15 views

Mandriva Update for rsyslog MDVSA-2012:100 (rsyslog)

Check for the Version of rsyslog OpenVAS Vulnerability Test Mandriva Update for rsyslog MDVSA-2012:100 rsyslog Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

2.1CVSS6.4AI score0.0042EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/06/28 12:0 a.m.27 views

Mandriva Update for rsyslog MDVSA-2012:100 (rsyslog)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

2.1CVSS5.2AI score0.0042EPSS
Exploits0References2
Rows per page
Query Builder