112 matches found
CentOS 6 : librelp (CESA-2018:1225)
An update for librelp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Scientific Linux Security Update : librelp on SL7.x x86_64 (20180424)
Security Fixes : - librelp: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c CVE-2018-1000140 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid109464; scriptversion"1.6";...
Critical Photon OS Security Update - PHSA-2018-0039
Updates of 'libvirt', 'httpd', 'zsh', 'libtiff', 'openjdk8', 'librelp' packages of Photon OS have been released...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0129
An update of 'libvirt', 'librelp' packages of Photon OS has been released...
Critical Photon OS Security Update - PHSA-2018-0129
Updates of 'libvirt', 'librelp' packages of Photon OS have been released...
Oracle Linux 7 : librelp (ELSA-2018-1223)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-1223 advisory. - fixed CVE-2018-1000140 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...
Scientific Linux Security Update : librelp on SL6.x i386/x86_64 (20180424)
Security Fixes : - librelp: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c CVE-2018-1000140 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid109340; scriptversion"1.6";...
RHEL 6 : librelp (RHSA-2018:1225)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1225 advisory. Librelp is an easy-to-use library for the Reliable Event Logging Protocol RELP protocol. RELP is a general-purpose, extensible logging protocol...
RHEL 7 : librelp (RHSA-2018:1223)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1223 advisory. - librelp: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c CVE-2018-1000140 Note that Nessus has not tested for this issue bu...
Oracle Linux 6 : librelp (ELSA-2018-1225)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-1225 advisory. - fixed CVE-2018-1000140 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...
librelp: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c
A stack-based buffer overflow was found in the way librelp parses X.509 certificates. By connecting or accepting connections from a remote peer, an attacker may use a specially crafted X.509 certificate to exploit this flaw and potentially execute arbitrary code...
Critical: Red Hat Security Advisory: librelp security update
An update for librelp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
librelp: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c
A stack-based buffer overflow was found in the way librelp parses X.509 certificates. By connecting or accepting connections from a remote peer, an attacker may use a specially crafted X.509 certificate to exploit this flaw and potentially execute arbitrary code...
Critical: Red Hat Security Advisory: librelp security update
An update for librelp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
librelp security update
1.2.12-1.1 - fixed bad NVR - resolves rhbz1561232 1.2.12-2 - fixed CVE-2018-1000140 - resolves rhbz1561232...
librelp security update
1.2.7-3.1 - fixed CVE-2018-1000140 - resolved: rhbz1561230...
GLSA-201804-21 : librelp: Remote code execution
The remote host is affected by the vulnerability described in GLSA-201804-21 librelp: Remote code execution A buffer overflow was discovered in librelp with the handling of x509 certificates. Impact : A remote attacker, by sending a specially crafted x509 certificate, could execute arbitrary code...
librelp: Remote code execution
Background A reliable logging program. Description A buffer overflow was discovered in librelp with the handling of x509 certificates. Impact A remote attacker, by sending a specially crafted x509 certificate, could execute arbitrary code. Workaround There is no known workaround at this time...
Amazon Linux 2 : librelp (ALAS-2018-998)
Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c : rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be exploitable a remote...
Critical: librelp
Issue Overview: Stack-based buffer overflow in relpTcpChkPeerName function in src/tcp.c: rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be...