rpm package
suse/syslog-ng&distro=SUSE Linux Enterprise Module for Legacy 12
pkg:rpm/suse/syslog-ng&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2012
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-38725 | — | < 3.6.4-12.11.1 | 3.6.4-12.11.1 | Jan 23, 2023 | An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog input that is mishandled by the tcp or network function. syslog-ng Premium Edition 7.0.30 and syslog-ng Store Box 6.10.0 ar | ||
| CVE-2020-8019 | — | < 3.6.4-12.8.1 | 3.6.4-12.8.1 | Jun 29, 2020 | A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of syslog-ng of SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Module for Legacy Software 12, SUSE Linux Enterprise Point of Sale 11-SP3, SUSE Linux Ente |
- CVE-2022-38725Jan 23, 2023affected < 3.6.4-12.11.1fixed 3.6.4-12.11.1
An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog input that is mishandled by the tcp or network function. syslog-ng Premium Edition 7.0.30 and syslog-ng Store Box 6.10.0 ar
- CVE-2020-8019Jun 29, 2020affected < 3.6.4-12.8.1fixed 3.6.4-12.8.1
A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of syslog-ng of SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Module for Legacy Software 12, SUSE Linux Enterprise Point of Sale 11-SP3, SUSE Linux Ente