Balabit syslog-ng 2.0.x prior to 2.0.6 and 2.1.x prior to 2.1.8 allows remote malicious users to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
balabit syslog-ng premium edition |
||
balabit syslog-ng open source edition |