Information on source package rsyslog

Available versions

ReleaseVersion
jessie8.4.2-1+deb8u2
jessie (security)8.4.2-1+deb8u3
stretch8.24.0-1
buster8.1901.0-1
bullseye8.1907.0-1
sid8.1910.0-1

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-17042fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablefixedAn issue was discovered in Rsyslog v8.1908.0. contrib/pmcisconames/pmc ...
CVE-2019-17041fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablefixedAn issue was discovered in Rsyslog v8.1908.0. contrib/pmaixforwardedfr ...
CVE-2018-16881fixedvulnerable (no DSA)fixedfixedfixedA denial of service vulnerability was found in rsyslog in the imptcp m ...

Open unimportant issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-17040fixedfixedfixedvulnerablefixedcontrib/pmdb2diag/pmdb2diag.c in Rsyslog v8.1908.0 allows out-of-bound ...
CVE-2017-12588vulnerablevulnerablefixedfixedfixedThe zmq3 input and output modules in rsyslog before 8.28.0 interpreted ...
CVE-2015-3243vulnerablevulnerablevulnerablevulnerablevulnerablersyslog uses weak permissions for generating log files, which allows l ...

Resolved issues

BugDescription
CVE-2014-3683Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysk ...
CVE-2014-3634rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier ...
CVE-2013-4758Double free vulnerability in the writeDataError function in the Elasti ...
CVE-2011-4623Integer overflow in the rsCStrExtendBuf function in runtime/stringbuf. ...
CVE-2011-3200Stack-based buffer overflow in the parseLegacySyslogMsg function in to ...
CVE-2011-1490
CVE-2011-1489
CVE-2011-1488
CVE-2008-5618imudp in rsyslog 4.x before 4.1.2, 3.21 before 3.21.9 beta, and 3.20 b ...
CVE-2008-5617The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does no ...

Security announcements

DSA / DLADescription
DLA-1952-1rsyslog - security update
DLA-72-2rsyslog - regression update
DLA-72-1rsyslog - security update
DSA-3047-1rsyslog - security update
DSA-3040-1rsyslog - security update

Search for package or bug name: Reporting problems