Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:0209-1

Опубликовано: 31 янв. 2019
Источник: suse-cvrf

Описание

Security update for rsyslog

This update for rsyslog fixes the following issues:

Security issue fixed:

  • CVE-2018-16881: Fixed a denial of service when both the imtcp module and Octet-Counted TCP Framing is enabled (bsc#1123164).

Список пакетов

Container caasp/v4/haproxy:beta1
rsyslog-8.24.0-3.19.1
Image SLES12-SP5-OCI-BYOS-BYOS
rsyslog-8.24.0-3.19.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS
rsyslog-8.24.0-3.19.1
SUSE Linux Enterprise Desktop 12 SP3
rsyslog-8.24.0-3.19.1
SUSE Linux Enterprise Desktop 12 SP4
rsyslog-8.24.0-3.19.1
SUSE Linux Enterprise Server 12 SP3
rsyslog-8.24.0-3.19.1
rsyslog-diag-tools-8.24.0-3.19.1
rsyslog-doc-8.24.0-3.19.1
rsyslog-module-gssapi-8.24.0-3.19.1
rsyslog-module-gtls-8.24.0-3.19.1
rsyslog-module-mysql-8.24.0-3.19.1
rsyslog-module-pgsql-8.24.0-3.19.1
rsyslog-module-relp-8.24.0-3.19.1
rsyslog-module-snmp-8.24.0-3.19.1
rsyslog-module-udpspoof-8.24.0-3.19.1
SUSE Linux Enterprise Server 12 SP4
rsyslog-8.24.0-3.19.1
rsyslog-diag-tools-8.24.0-3.19.1
rsyslog-doc-8.24.0-3.19.1
rsyslog-module-gssapi-8.24.0-3.19.1
rsyslog-module-gtls-8.24.0-3.19.1
rsyslog-module-mysql-8.24.0-3.19.1
rsyslog-module-pgsql-8.24.0-3.19.1
rsyslog-module-relp-8.24.0-3.19.1
rsyslog-module-snmp-8.24.0-3.19.1
rsyslog-module-udpspoof-8.24.0-3.19.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
rsyslog-8.24.0-3.19.1
rsyslog-diag-tools-8.24.0-3.19.1
rsyslog-doc-8.24.0-3.19.1
rsyslog-module-gssapi-8.24.0-3.19.1
rsyslog-module-gtls-8.24.0-3.19.1
rsyslog-module-mysql-8.24.0-3.19.1
rsyslog-module-pgsql-8.24.0-3.19.1
rsyslog-module-relp-8.24.0-3.19.1
rsyslog-module-snmp-8.24.0-3.19.1
rsyslog-module-udpspoof-8.24.0-3.19.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4
rsyslog-8.24.0-3.19.1
rsyslog-diag-tools-8.24.0-3.19.1
rsyslog-doc-8.24.0-3.19.1
rsyslog-module-gssapi-8.24.0-3.19.1
rsyslog-module-gtls-8.24.0-3.19.1
rsyslog-module-mysql-8.24.0-3.19.1
rsyslog-module-pgsql-8.24.0-3.19.1
rsyslog-module-relp-8.24.0-3.19.1
rsyslog-module-snmp-8.24.0-3.19.1
rsyslog-module-udpspoof-8.24.0-3.19.1

Ссылки

Описание

A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable.

Затронутые продукты
Container caasp/v4/haproxy:beta1:rsyslog-8.24.0-3.19.1
Image SLES12-SP5-OCI-BYOS-BYOS:rsyslog-8.24.0-3.19.1
Image SLES12-SP5-OCI-BYOS-SAP-BYOS:rsyslog-8.24.0-3.19.1
SUSE Linux Enterprise Desktop 12 SP3:rsyslog-8.24.0-3.19.1
Ссылки