Download
| Alert*
oval:org.secpod.oval:def:503602
The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine-grained control over output format. Security Fix: * rsyslog: heap-based overflow in contrib/pmaixforwardedfrom/pmaixforward ... oval:org.secpod.oval:def:66787 The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine-grained control over output format. The following packages have been upgraded to a later upstream version: rsyslog . Secur ... oval:org.secpod.oval:def:89050578 This update for rsyslog fixes the following issues: Security issues fixed: - CVE-2019-17041: Fixed a heap overflow in the parser for AIX log messages . - CVE-2019-17042: Fixed a heap overflow in the parser for Cisco log messages . Other issue addressed: - Fixed an issue where rsyslog was SEGFAULT du ... oval:org.secpod.oval:def:1801605 empty oval:org.secpod.oval:def:2106055 Oracle Solaris 11 - ( CVE-2019-17040 ) oval:org.secpod.oval:def:89000183 This update for rsyslog fixes the following issues: Security issues fixed: - CVE-2019-17041: Fixed a heap overflow in the parser for AIX log messages . - CVE-2019-17042: Fixed a heap overflow in the parser for Cisco log messages . Non-security issues fixed: - Handle multiline messages correctly when ... oval:org.secpod.oval:def:205481 The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine-grained control over output format. Security Fix: * rsyslog: heap-based overflow in contrib/pmaixforwardedfrom/pmaixforward ... oval:org.secpod.oval:def:1700357 An issue was discovered in Rsyslog v8.1908.0. contrib/pmaixforwardedfrom/pmaixforwardedfrom.c has a heap overflow in the parser for AIX log messages. The parser tries to locate a log message delimiter but fails to account for strings that do not satisfy this constraint. If the string does not match ... oval:org.secpod.oval:def:1504204 [8.1911.0-3] RHEL 8.2.0 ERRATUM - added patch reverting rejecting expired certs by default resolves: rhbz#1782353 - added patch silencing false errors on config.enabled statement resolves: rhbz#1659383 [8.1911.0-2] RHEL 8.2.0 ERRATUM - cleaned old patches, fixed patch names resolves: rhbz#1740683 [8 ... oval:org.secpod.oval:def:1504016 [8.24.0-52] RHEL 7.8 ERRATUM - edited patch file ID for imfile to not log useless errors also improved file-id behavior to adress newly found problems resolves: rhbz#1763746 [8.24.0-49] RHEL 7.8 ERRATUM - fixed fsync patch to actually revognize the new option resolves: rhbz#1696686 [8.24.0-48] RHEL ... oval:org.secpod.oval:def:69502 The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine-grained control over output format. The following packages have been upgraded to a later upstream version: rsyslog . Secur ... |