19 matches found
Debian: Security Advisory (DLA-72-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:1294-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:1438-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : update for rsyslog (SUSE-SU-2014:1438-1)
This update for rsyslog provides the following fixes : - Fixed remote PRI DoS vulnerability patch CVE-2014-3683, bnc899756 - Removed broken, unsupported and dropped by upstream zpipe utility from rsyslog-diag-tools package bnc890228 Note that Tenable Network Security has extracted the preceding...
RSYSLOG PRI Value Parsing Integer Overflow Denial of Service (CVE-2014-3683)
A denial of service vulnerability has been reported in rsyslog and sysklogd. The vulnerability is due to an integer overflow when handling PRI values larger than MAXINT in log messages. A remote, unauthenticated attacker can exploit these vulnerabilities by sending crafted packets to an affected...
AIX rsyslog Advisory : rsyslog_advisory.asc
The version of rsyslog installed on the remote AIX host is affected by a remote code execution or denial of service vulnerability : - The installed rsyslog allows remote attackers to cause a denial of service crash, possibly execute arbitrary code, or have other unspecified impacts by crafting a...
DEBIAN-CVE-2014-3683
Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service crash via a large priority PRI value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3634...
CVE-2014-3683
Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service crash via a large priority PRI value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3634...
CVE-2014-3683
CVE-2014-3683 is an rsyslog-related integer overflow vulnerability: rsyslog before 7.6.7 and 8.x before 8.4.2 (and sysklogd 1.5 and earlier) can crash the daemon when processing a crafted high PRI value, enabling a remote DoS. The issue stems from an incomplete fix for CVE-2014-3634. Public advis...
DLA-72-2 rsyslog - regression update
Bulletin has no description...
DLA-72-1 rsyslog - security update
Bulletin has no description...
openSUSE Security Update : rsyslog (openSUSE-SU-2014:1297-1)
Fixed PRI DoS vulnerability patch CVE-2014-3683,bnc899756 rsyslog-7.4.7-remote-PRI-DoS-fix-backportCVE-2014-3634. patch - Removed broken, unsupported and dropped by upstream zpipe utility from rsyslog-diag-tools package bnc890228 - Remote syslog PRI DoS vulnerability fix CVE-2014-3634,bnc897262 +...
openSUSE Security Update : rsyslog (openSUSE-SU-2014:1298-1)
Fixed remote PRI DoS vulnerability patch CVE-2014-3683,bnc899756 rsyslog-7.2.7-remote-PRI-DoS-fix-backportCVE-2014-3634. patch - Removed broken, unsupported and dropped by upstream zpipe utility from rsyslog-diag-tools package bnc890228 - Remote syslog PRI DoS vulnerability fix...
SuSE 11.3 Security Update : rsyslog (SAT Patch Number 9840)
rsyslog has been updated to fix a remote denial of service issue : - Under certain configurations, a local or remote attacker able to send syslog messages to the server could have crashed the log server due to an array overread. CVE-2014-3634 / CVE-2014-3683 %NASLMINLEVEL 70300 C Tenable Network...
Security fix for the ALT Linux 7 package rsyslog version 7.6.7-alt0.M70P.1
7.6.7-alt0.M70P.1 built Oct. 13, 2014 Alexey Shabalin in task 131847 Oct. 9, 2014 Alexey Shabalin - 7.6.7 - fixed CVE-2014-3634, CVE-2014-3683...
Ubuntu 14.04 LTS : Rsyslog vulnerabilities (USN-2381-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2381-1 advisory. It was discovered that Rsyslog incorrectly handled invalid PRI values. An attacker could use this issue to send malformed messages to the Rsyslog server...
Ubuntu: Security Advisory (USN-2381-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 3047-1] rsyslog security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3047-1 [email protected] http://www.debian.org/security/ Luciano Bello October 08, 2014 http://www.debian.org/security/faq -...
CVE-2014-3683
Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service crash via a large priority PRI value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3634...