Lucene search
K

855 matches found

RedHat Linux
RedHat Linux
added 2011/09/01 7:54 p.m.17 views

Moderate: Red Hat Security Advisory: rsyslog security update

Updated rsyslog packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

5CVSS6AI score0.20759EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2011/09/01 7:54 p.m.8 views

rsyslog: parseLegacySyslogMsg off-by-two buffer overflow

Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of service application exit via a long TAG in a legacy syslog message...

5CVSS6AI score0.20759EPSS
Exploits2References5
Oracle linux
Oracle linux
added 2011/09/01 12:0 a.m.33 views

rsyslog security update

4.6.2-3.el61.2 - add patch to resolve buffer overflow CVE-2011-3200 Resolves: 733647...

5CVSS4.2AI score0.20759EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.22 views

openSUSE Security Update : rsyslog (rsyslog-367)

rsyslog ignored the $AllowedSender configuration directive, therefore accepting log messages from anyone CVE-2008-5617. Additionally imudp logged a message when unauthorized senders tried to send to it, therefore allowing attackers to flood the log CVE-2008-5618. %NASLMINLEVEL 70300 C Tenable...

8.5CVSS5.3AI score0.01906EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.22 views

openSUSE Security Update : rsyslog (rsyslog-392)

rsyslog ignored the $AllowedSender configuration directive, therefore accepting log messages from anyone CVE-2008-5617. Additionally imudp logged a message when unauthorized senders tried to send to it, therefore allowing attackers to flood the log CVE-2008-5618. %NASLMINLEVEL 70300 C Tenable...

8.5CVSS5.3AI score0.01906EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.13 views

MDVA-2009:036 : postfix

Postfix as shipped with Mandriva Linux 2009.0 fails to install if rsyslog logging daemon is installed. This updated package adds support for correct Postfix integration with rsyslog. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a securi...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.24 views

Fedora 10 : rsyslog-3.21.9-1.fc10 (2008-11476)

Security fixes for CVE-2008-5617 and CVE-2008-5618, detailed in: http://www.rsyslog.com/Article322.phtml http://secunia.com/Advisories/32857/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

8.5CVSS5.3AI score0.01906EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.22 views

Fedora Update for rsyslog FEDORA-2008-11538

Check for the Version of rsyslog OpenVAS Vulnerability Test Fedora Update for rsyslog FEDORA-2008-11538 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

8.5CVSS6.4AI score0.01906EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.22 views

Fedora Update for rsyslog FEDORA-2008-11476

Check for the Version of rsyslog OpenVAS Vulnerability Test Fedora Update for rsyslog FEDORA-2008-11476 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

8.5CVSS6.4AI score0.01906EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.12 views

Fedora Update for rsyslog FEDORA-2008-11538

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

8.5CVSS6.7AI score0.01906EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.14 views

Fedora Update for rsyslog FEDORA-2008-11476

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

8.5CVSS6.7AI score0.01906EPSS
Exploits0References2
Fedora
Fedora
added 2008/12/21 8:44 a.m.52 views

[SECURITY] Fedora 10 Update: rsyslog-3.21.9-1.fc10

Rsyslog is an enhanced multi-threaded syslogd supporting, among others, MyS QL, syslog/tcp, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is quite compatible to stock syskl ogd and can be used as a drop-in replacement. Its advanced...

8.5CVSS6.4AI score0.01906EPSS
Exploits0
Fedora
Fedora
added 2008/12/21 8:38 a.m.36 views

[SECURITY] Fedora 9 Update: rsyslog-3.20.2-2.fc9

Rsyslog is an enhanced multi-threaded syslogd supporting, among others, MyS QL, syslog/tcp, RFC 3195, permitted sender lists, filtering on any message part, and fine grain output format control. It is quite compatible to stock syskl ogd and can be used as a drop-in replacement. Its advanced...

8.5CVSS6.4AI score0.01906EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/12/21 12:0 a.m.20 views

Fedora 9 : rsyslog-3.20.2-2.fc9 (2008-11538)

Security fixes for CVE-2008-5617 and CVE-2008-5618, detailed in: http://www.rsyslog.com/Article322.phtml http://secunia.com/Advisories/32857/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

8.5CVSS5.3AI score0.01906EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2008/12/17 2:30 a.m.23 views

CVE-2008-5617

The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages...

8.5CVSS5.9AI score0.01906EPSS
Exploits0References2
Prion
Prion
added 2008/12/17 2:30 a.m.12 views

Design/Logic Flaw

The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages...

8.5CVSS6.7AI score0.01906EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2008/12/17 2:30 a.m.14 views

CVE-2008-5617

The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does not follow $AllowedSender directive, which allows remote attackers to bypass intended access restrictions and spoof log messages or create a large number of spurious messages...

8.5CVSS6.4AI score0.01906EPSS
Exploits0References6
Prion
Prion
added 2008/12/17 2:30 a.m.11 views

Design/Logic Flaw

imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 before 3.20.2 generates a message even when it is sent by an unauthorized sender, which allows remote attackers to cause a denial of service disk consumption via a large number of spurious messages...

5CVSS6.5AI score0.01171EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2008/12/17 2:30 a.m.16 views

CVE-2008-5618

imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 before 3.20.2 generates a message even when it is sent by an unauthorized sender, which allows remote attackers to cause a denial of service disk consumption via a large number of spurious messages...

5CVSS5.9AI score0.01171EPSS
Exploits0References2
NVD
NVD
added 2008/12/17 2:30 a.m.17 views

CVE-2008-5618

imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 before 3.20.2 generates a message even when it is sent by an unauthorized sender, which allows remote attackers to cause a denial of service disk consumption via a large number of spurious messages...

5CVSS6.3AI score0.01171EPSS
Exploits0References1
Rows per page
Query Builder