855 matches found
rsyslog security, bug fix, and enhancement update
5.8.10-2 - add patch to update information on debugging in the man page Resolves: 820311 - add patch to prevent debug output to stdout after forking Resolves: 820996 - add patch to support ssl certificates with domain names longer than 128 chars Resolves: 822118 5.8.10-1 - rebase to rsyslog 5.8.1...
sos security, bug fix, and enhancement update
2.2-29.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove RH ftp URL and support email - add...
Mandriva Linux Security Advisory : rsyslog (MDVSA-2012:100)
A vulnerability has been discovered and corrected in rsyslog : An integer signedness error, leading to heap based buffer overflow was found in the way the imfile module of rsyslog, an enhanced system logging and kernel message trapping daemon, processed text files larger than 64 KB. When the imfi...
RedHat Update for rsyslog RHSA-2012:0796-04
Check for the Version of rsyslog OpenVAS Vulnerability Test RedHat Update for rsyslog RHSA-2012:0796-04 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
RedHat Update for rsyslog RHSA-2012:0796-04
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
RHEL 6 : rsyslog (RHSA-2012:0796)
Updated rsyslog packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...
rsyslog: DoS due integer signedness error while extending rsyslog counted string buffer
Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...
Moderate: Red Hat Security Advisory: rsyslog security, bug fix, and enhancement update
Updated rsyslog packages that fix one security issue, multiple bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...
PT-2012-1180 · Rsyslog +2 · Rsyslog +2
Name of the Vulnerable Software and Affected Versions: rsyslog versions prior to 8.4.2 rsyslog versions 4.x prior to 4.6.6 rsyslog versions 5.x prior to 5.7.4 rsyslog versions 6.x prior to 6.1.4 Description: The issue is related to multiple vulnerabilities in the rsyslog package, which can be...
Fedora Update for rsyslog FEDORA-2011-12250
Check for the Version of rsyslog OpenVAS Vulnerability Test Fedora Update for rsyslog FEDORA-2011-12250 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for rsyslog FEDORA-2011-12250
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Ubuntu Update for rsyslog USN-1338-1
Ubuntu Update for Linux kernel vulnerabilities USN-1338-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13381.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for rsyslog USN-1338-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...
Ubuntu: Security Advisory (USN-1338-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 11.04 : rsyslog vulnerability (USN-1338-1)
Peter Eisentraut discovered that Rsyslog would not properly perform input validation when configured to use imfile. If an attacker were able to craft messages in a file that Rsyslog monitored, an attacker could cause a denial of service. The imfile module is disabled by default in Ubuntu. Note th...
USN-1338-1: Rsyslog vulnerability
Peter Eisentraut discovered that Rsyslog would not properly perform input validation when configured to use imfile. If an attacker were able to craft messages in a file that Rsyslog monitored, an attacker could cause a denial of service. The imfile module is disabled by default in Ubuntu...
CVE-2011-4623
Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf.c in the imfile module in rsyslog 4.x before 4.6.6, 5.x before 5.7.4, and 6.x before 6.1.4 allows local users to cause a denial of service daemon hang via a large file, which triggers a heap-based buffer overflow...
Ubuntu Update for rsyslog USN-1224-1
Ubuntu Update for Linux kernel vulnerabilities USN-1224-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12241.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for rsyslog USN-1224-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...
Ubuntu: Security Advisory (USN-1224-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 11.04 : rsyslog vulnerability (USN-1224-1)
It was discovered that rsyslog had an off-by-two error when parsing legacy syslog messages. An attacker could potentially exploit this to cause a denial of service via application crash. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...
USN-1224-1: rsyslog vulnerability
It was discovered that rsyslog had an off-by-two error when parsing legacy syslog messages. An attacker could potentially exploit this to cause a denial of service via application crash...