VYPR

rpm package

suse/rsyslog&distro=SUSE Linux Enterprise Module for Server Applications 15

pkg:rpm/suse/rsyslog&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015

Vulnerabilities (3)

  • CVE-2019-17042Oct 7, 2019
    affected < 8.33.1-3.22.4fixed 8.33.1-3.22.4

    An issue was discovered in Rsyslog v8.1908.0. contrib/pmcisconames/pmcisconames.c has a heap overflow in the parser for Cisco log messages. The parser tries to locate a log message delimiter (in this case, a space or a colon), but fails to account for strings that do not satisfy

  • CVE-2019-17041Oct 7, 2019
    affected < 8.33.1-3.22.4fixed 8.33.1-3.22.4

    An issue was discovered in Rsyslog v8.1908.0. contrib/pmaixforwardedfrom/pmaixforwardedfrom.c has a heap overflow in the parser for AIX log messages. The parser tries to locate a log message delimiter (in this case, a space or a colon) but fails to account for strings that do not

  • CVE-2015-3243MedJul 25, 2017
    affected < 8.33.1-3.3.1fixed 8.33.1-3.3.1

    rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron.