Описание
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 7.4.4-1ubuntu11 |
| esm-infra-legacy/trusty | released | 7.4.4-1ubuntu2.3 |
| esm-infra/xenial | released | 7.4.4-1ubuntu11 |
| lucid | released | 4.2.0-2ubuntu8.3 |
| precise | released | 5.8.6-1ubuntu8.9 |
| precise/esm | not-affected | 5.8.6-1ubuntu8.9 |
| trusty | released | 7.4.4-1ubuntu2.3 |
| trusty/esm | released | 7.4.4-1ubuntu2.3 |
| upstream | released | 8.4.1,7.6.6 |
| utopic | released | 7.4.4-1ubuntu11 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| utopic | DNE | |
| vivid | DNE |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier ...
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
ELSA-2014-1671: rsyslog5 and rsyslog security update (MODERATE)
EPSS
7.5 High
CVSS2