Information on source package rsyslog

Available versions

ReleaseVersion
jessie8.4.2-1+deb8u2
stretch8.24.0-1
buster8.1901.0-1
sid8.1901.0-1

Open issues

BugjessiestretchbustersidDescription
CVE-2018-16881fixedvulnerable (no DSA)fixedfixedA denial of service vulnerability was found in rsyslog in the imptcp m ...

Open unimportant issues

BugjessiestretchbustersidDescription
CVE-2017-12588vulnerablevulnerablefixedfixedThe zmq3 input and output modules in rsyslog before 8.28.0 interpreted ...
CVE-2015-3243vulnerablevulnerablevulnerablevulnerablersyslog uses weak permissions for generating log files, which allows l ...

Resolved issues

BugDescription
CVE-2014-3683Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysk ...
CVE-2014-3634rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier ...
CVE-2013-4758Double free vulnerability in the writeDataError function in the Elasti ...
CVE-2011-4623Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf. ...
CVE-2011-3200Stack-based buffer overflow in the parseLegacySyslogMsg function in to ...
CVE-2011-1490
CVE-2011-1489
CVE-2011-1488
CVE-2008-5618imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 b ...
CVE-2008-5617The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does no ...

Security announcements

DSA / DLADescription
DLA-72-2rsyslog - regression update
DLA-72-1rsyslog - security update
DSA-3047-1rsyslog - security update
DSA-3040-1rsyslog - security update

Search for package or bug name: Reporting problems