Rsyslog could be made to crash if it received specially crafted input ...
Mancha discovered a vulnerability in rsyslog, a system for log
processing This vulnerability is an integer overflow that can be
triggered by malformed messages to a server, if this one accepts data
from untrusted sources, provoking message loss, denial of service and, potentially, remote code execution
This vulnerability can be seen as an incompl ...
Rainer Gerhards, the rsyslog project leader, reported a vulnerability in
Rsyslog, a system for log processing As a consequence of this
vulnerability an attacker can send malformed messages to a server, if
this one accepts data from untrusted sources, and trigger a denial of
service attack
For the stable distribution (wheezy), this problem has bee ...
A flaw was found in the way rsyslog handled invalid log message priority values In certain configurations, a local attacker, or a remote attacker able to connect to the rsyslog port, could use this flaw to crash the rsyslog daemon or, potentially in rsyslog 7x, execute arbitrary code as the user running the rsyslog daemon (CVE-2014-3634)
A flaw ...
A flaw was found in the way rsyslog handled invalid log message priority values In certain configurations, a local attacker, or a remote attacker able to connect to the rsyslog port, could use this flaw to crash the rsyslog daemon (CVE-2014-3634) ...
A flaw was found in the way rsyslog handled invalid log message priority values In certain configurations, a local attacker, or a remote attacker able to connect to the rsyslog port, could use this flaw to crash the rsyslog daemon or, potentially in rsyslog 7x, execute arbitrary code as the user running the rsyslog daemon (CVE-2014-3634)
A flaw ...
A flaw was found in the way rsyslog handled invalid log message priority values In certain configurations, a local attacker, or a remote attacker able to connect to the rsyslog port, could use this flaw to crash the rsyslog daemon or, potentially in rsyslog 7x, execute arbitrary code as the user running the rsyslog daemon ...
A flaw was found in the way rsyslog handled invalid log message priority values In certain configurations, a local attacker, or a remote attacker able to connect to the rsyslog port, could use this flaw to crash the rsyslog daemon or, potentially in rsyslog 7x, execute arbitrary code as the user running the rsyslog daemon (CVE-2014-3634)
A flaw ...
ALAS-2022-211
Amazon Linux 2022 Security Advisory: ALAS-2022-211
Advisory Release Date: 2022-12-06 16:41 Pacific
...