Lucene search
+L

236 matches found

Fedora
Fedora
added 2008/12/07 4:29 a.m.34 views

[SECURITY] Fedora 10 Update: syslog-ng-2.0.10-1.fc10

syslog-ng, as the name shows, is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pairs; syslog-ng adds the possibility to filter based on message contents using regular expressions. The new...

9.3CVSS1.4AI score0.022EPSS
Exploits0
Fedora
Fedora
added 2008/12/07 4:14 a.m.39 views

[SECURITY] Fedora 9 Update: syslog-ng-2.0.10-1.fc9

syslog-ng, as the name shows, is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pairs; syslog-ng adds the possibility to filter based on message contents using regular expressions. The new...

9.3CVSS1.4AI score0.022EPSS
Exploits0
NVD
NVD
added 2008/11/17 10:21 p.m.18 views

CVE-2008-5110

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

9.3CVSS6.1AI score0.022EPSS
Exploits0References7
OSV
OSV
added 2008/11/17 10:21 p.m.5 views

CVE-2008-5110

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

6.1AI score
Exploits0References10
OSV
OSV
added 2008/11/17 10:21 p.m.4 views

DEBIAN-CVE-2008-5110

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

9.3CVSS6.4AI score0.022EPSS
Exploits0References1
Prion
Prion
added 2008/11/17 10:21 p.m.22 views

Security feature bypass

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

9.3CVSS6.3AI score0.022EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2008/11/17 10:21 p.m.19 views

CVE-2008-5110

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

9.3CVSS5.9AI score0.022EPSS
Exploits0References1
CVE
CVE
added 2008/11/17 10:0 p.m.80 views

CVE-2008-5110

CVE-2008-5110 affects syslog-ng up to version 2.0.x (=2.0.10 or >=2.1.3 (for the 2.0 and 2.1 lines, respectively). Additional references (GLSA 200907-10) describe the local access risk and remediation, and Fedora advisories similarly indicate updates addressing CVE-2008-5110. No explicit in-th...

9.3CVSS5.9AI score0.022EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2008/11/17 10:0 p.m.70 views

CVE-2008-5110

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

9.3CVSS3.7AI score0.022EPSS
Exploits0
Cvelist
Cvelist
added 2008/11/17 10:0 p.m.39 views

CVE-2008-5110

syslog-ng does not call chdir when it calls chroot, which might allow attackers to escape the intended jail. NOTE: this is only a vulnerability when a separate vulnerability is present. This flaw affects syslog-ng versions prior to and including 2.0.9...

6AI score0.022EPSS
Exploits0References7
FreeBSD
FreeBSD
added 2008/11/15 12:0 a.m.33 views

syslog-ng2 -- startup directory leakage in the chroot environment

Florian Grandel reports: I have not had the time to analyze all of syslog-ng code. But by reading the code section near the chroot call and looking at strace results I believe that syslog-ng does not chdir to the chroot jail's location before chrooting into it. This opens up ways to work around t...

9.3CVSS6.6AI score0.022EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.15 views

Gentoo Security Advisory GLSA 200712-19 (syslog-ng)

The remote host is missing updates announced in advisory GLSA 200712-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

5CVSS0.03348EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.12 views

Gentoo Security Advisory GLSA 200712-19 (syslog-ng)

The remote host is missing updates announced in advisory GLSA 200712-19. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.03348EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/01/31 12:0 a.m.15 views

Debian Security Advisory DSA 1464-1 (syslog-ng)

The remote host is missing an update to syslog-ng announced via advisory DSA 1464-1. OpenVAS Vulnerability Test $Id: deb14641.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1464-1 syslog-ng Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

5CVSS0.1AI score0.03348EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/31 12:0 a.m.13 views

Debian: Security Advisory (DSA-1464-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.03348EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2008/01/21 12:0 a.m.22 views

Fedora 7 : syslog-ng-2.0.7-1.fc7 (2008-0559)

Contains a security fix for CVE-2007-6437/ZSA-2007-029 DoS Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

5CVSS5.4AI score0.03348EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2008/01/21 12:0 a.m.27 views

Fedora 8 : syslog-ng-2.0.7-1.fc8 (2008-0523)

Contains a security fix for CVE-2007-6437/ZSA-2007-029 DoS Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

5CVSS5.4AI score0.03348EPSS
Exploits0References6
Fedora
Fedora
added 2008/01/18 11:56 p.m.24 views

[SECURITY] Fedora 7 Update: syslog-ng-2.0.7-1.fc7

syslog-ng, as the name shows, is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pairs; syslog-ng adds the possibility to filter based on message contents using regular expressions. The new...

5CVSS1.4AI score0.03348EPSS
Exploits0
Fedora
Fedora
added 2008/01/18 11:56 p.m.18 views

[SECURITY] Fedora 8 Update: syslog-ng-2.0.7-1.fc8

syslog-ng, as the name shows, is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pairs; syslog-ng adds the possibility to filter based on message contents using regular expressions. The new...

5CVSS1.4AI score0.03348EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 175-1 (syslog-ng)

The remote host is missing an update to syslog-ng announced via advisory DSA 175-1. OpenVAS Vulnerability Test $Id: deb1751.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 175-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.8AI score0.05578EPSS
Exploits1
Rows per page
Query Builder