Lucene search
Ubuntu.comUB:CVE-2011-3200HistorySep 06, 2011 - 12:00 a.m.
CVE-2011-3200
2011-09-0600:00:00
ubuntu.com
ubuntu.com
8
0.155 Low
EPSS
Percentile
95.9%
Stack-based buffer overflow in the parseLegacySyslogMsg function in
tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through
5.8.4 might allow remote attackers to cause a denial of service
(application exit) via a long TAG in a legacy syslog message.
Notes
| Author | Note |
|---|---|
| jdstrand | On i386 and amd64 it seems to just truncate messages slightly and not be a DoS. Will patch anyway just in case for other architectures. |
Related
fedora
fedora
[SECURITY] Fedora 15 Update: rsyslog-5.8.5-1.fc15
2011-09-25 03:52:50
[SECURITY] Fedora 16 Update: rsyslog-5.8.5-1.fc16
2011-09-13 06:09:01
[SECURITY] Fedora 14 Update: rsyslog-4.6.3-3.fc14
2011-09-14 22:29:15
nessus
nessus
Fedora 16 : rsyslog-5.8.5-1.fc16 (2011-12250)
2011-09-14 00:00:00
Fedora 14 : rsyslog-4.6.3-3.fc14 (2011-12282)
2011-09-15 00:00:00
cve
cve
CVE-2011-3200
2011-09-06 16:55:00
openvas
openvas
Fedora Update for rsyslog FEDORA-2011-12616
2011-09-27 00:00:00
Fedora Update for rsyslog FEDORA-2011-12250
2012-03-19 00:00:00
RedHat Update for rsyslog RHSA-2011:1247-01
2012-07-09 00:00:00
securityvulns
securityvulns
rsyslog buffer overflow
2011-09-13 00:00:00
[ MDVSA-2011:134 ] rsyslog
2011-09-13 00:00:00
redhat
redhat
(RHSA-2011:1247) Moderate: rsyslog security update
2011-09-01 00:00:00
debiancve
debiancve
CVE-2011-3200
2011-09-06 16:55:00
cvelist
cvelist
CVE-2011-3200
2011-09-06 16:00:00
prion
prion
Stack overflow
2011-09-06 16:55:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:02:20
oraclelinux
oraclelinux
rsyslog security update
2011-09-01 00:00:00
ubuntu
ubuntu
rsyslog vulnerability
2011-10-03 00:00:00