MDVSA-2011:134 -- Mandriva rsyslogID: oval:org.secpod.oval:def:301083 | Date: (C)2012-01-07 (M)2023-11-13 |
Class: PATCH | Family: unix |
A vulnerability was discovered and corrected in rsyslog: Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of service via a long TAG in a legacy syslog message . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Linux 2010.1 |