11 matches found
SUSE CVE-2011-1155
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service rotation outage via a 1 \n newline or 2 \ backslash character in a log filename, as demonstrated by a filename that is automatically constructed on the basis ...
NewStart CGSL MAIN 6.02 : logrotate Multiple Vulnerabilities (NS-SA-2022-0095)
The remote NewStart CGSL host, running version MAIN 6.02, has logrotate packages installed that are affected by multiple vulnerabilities: - Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before th...
NewStart CGSL CORE 5.04 / MAIN 5.04 : logrotate Multiple Vulnerabilities (NS-SA-2021-0108)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has logrotate packages installed that are affected by multiple vulnerabilities: - Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a fi...
SuSE 10 Security Update : logrotate (ZYPP Patch Number 7534)
This update for logrotate provides the following fixes : - Race condition in the createOutputFile function in logrotate allows local users to read log data by opening a file before the intended permissions are in place CVE-2011-1098. bnc677336 - The writeState function in logrotate might allow...
Mandriva Update for logrotate MDVSA-2011:065 (logrotate)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
logrotate: DoS due improper escaping of file names within 'write state' action
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service rotation outage via a 1 \n newline or 2 \ backslash character in a log filename, as demonstrated by a filename that is automatically constructed on the basis ...
CVE-2011-1155
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service rotation outage via a 1 \n newline or 2 \ backslash character in a log filename, as demonstrated by a filename that is automatically constructed on the basis ...
Design/Logic Flaw
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service rotation outage via a 1 \n newline or 2 \ backslash character in a log filename, as demonstrated by a filename that is automatically constructed on the basis ...
CVE-2011-1155
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service rotation outage via a 1 \n newline or 2 \ backslash character in a log filename, as demonstrated by a filename that is automatically constructed on the basis ...
CVE-2011-1155
CVE-2011-1155 affects logrotate up to version 3.7.9, where the writeState function in logrotate.c may allow context-dependent attackers to trigger a denial-of-service (rotation outage) by using a log filename containing a newline or a backslash. The MiracleLinux advisory and related Nessus entrie...
CVE-2011-1155
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service rotation outage via a 1 \n newline or 2 \ backslash character in a log filename, as demonstrated by a filename that is automatically constructed on the basis ...