rpm package
suse/rsyslog&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3
pkg:rpm/suse/rsyslog&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-24903 | — | < 8.24.0-3.58.2 | 8.24.0-3.58.2 | May 5, 2022 | Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used. This can result in a segfault or some other malfunction. As of our understanding, this vulnerability can not be used for | ||
| CVE-2018-16881 | — | < 8.24.0-3.19.1 | 8.24.0-3.19.1 | Jan 25, 2019 | A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable. | ||
| CVE-2015-3243 | Med | 5.5 | < 8.24.0-3.3.1 | 8.24.0-3.3.1 | Jul 25, 2017 | rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron. |
- CVE-2022-24903May 5, 2022affected < 8.24.0-3.58.2fixed 8.24.0-3.58.2
Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used. This can result in a segfault or some other malfunction. As of our understanding, this vulnerability can not be used for
- CVE-2018-16881Jan 25, 2019affected < 8.24.0-3.19.1fixed 8.24.0-3.19.1
A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable.
- affected < 8.24.0-3.3.1fixed 8.24.0-3.3.1
rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron.