2 matches found
CVE-2020-8443
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis ossec-analysisd is vulnerable to an off-by-one heap-based buffer overflow during the cleaning of crafted syslog msgs received from authenticated remote agents and delivered to the analysisd processing queue by...
CVE-2020-8443
CVE-2020-8443 affects OSSEC-HIDS 2.7–3.5.0: the server component ossec-analysisd is vulnerable to an off-by-one heap-based buffer overflow when cleaning crafted syslog messages passed from authenticated remote agents via ossec-remoted into the analysis queue. Public disclosures across multiple fe...