Описание
ELSA-2018-1223: librelp security update (CRITICAL)
[1.2.12-1.1]
- fixed bad NVR
- resolves rhbz#1561232
[1.2.12-2]
- fixed CVE-2018-1000140
- resolves rhbz#1561232
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
librelp
1.2.12-1.el7_5.1
librelp-devel
1.2.12-1.el7_5.1
Oracle Linux x86_64
librelp
1.2.12-1.el7_5.1
librelp-devel
1.2.12-1.el7_5.1
Связанные CVE
Связанные уязвимости
rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be exploitable a remote attacker that can connect to rsyslog and trigger a stack buffer overflow by sending a specially crafted x509 certificate.
rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be exploitable a remote attacker that can connect to rsyslog and trigger a stack buffer overflow by sending a specially crafted x509 certificate.
rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be exploitable a remote attacker that can connect to rsyslog and trigger a stack buffer overflow by sending a specially crafted x509 certificate.
rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow ...
