CVE-2006-1624

NameCVE-2006-1624
DescriptionThe default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
sysklogdsource(unstable)(unfixed)unimportant

Notes

No sane person will open a network socket for syslog without apropriate
firewall rules. The default is not to listen to the network.
Search for package or bug name: Reporting problems