Showing 1 - 4 of 4

CVE-2014-3683

Status Candidate

Overview

Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash) via a large priority (PRI) value. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3634.

Related Files

Gentoo Linux Security Advisory 201412-35: Posted Dec 26, 2014; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201412-35 - Multiple vulnerabilities have been found in RSYSLOG, allowing attackers to cause Denial of Service. Versions less than 8.4.2 are affected.; tags | advisory, denial of service, vulnerability; systems | linux, gentoo; advisories | CVE-2011-4623, CVE-2014-3634, CVE-2014-3683; SHA-256 | 7db176d00ab76358788ddc53d62e7c9adc9a9502b21744efc78dd4089352ed30; Download | Favorite | View

Mandriva Linux Security Advisory 2014-196: Posted Oct 21, 2014; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2014-196 - Rainer Gerhards, the rsyslog project leader, reported a vulnerability in Rsyslog. As a consequence of this vulnerability an attacker can send malformed messages to a server, if this one accepts data from untrusted sources, and trigger a denial of service attack.; tags | advisory, denial of service; systems | linux, mandriva; advisories | CVE-2014-3634, CVE-2014-3683; SHA-256 | 163db772baec808ac8533a3c1ddf3059f717bd8f480fdf1a51d926bc04284d17; Download | Favorite | View

Ubuntu Security Notice USN-2381-1: Posted Oct 9, 2014; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2381-1 - It was discovered that Rsyslog incorrectly handled invalid PRI values. An attacker could use this issue to send malformed messages to the Rsyslog server and cause it to stop responding, resulting in a denial of service and possibly message loss.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2014-3634, CVE-2014-3683; SHA-256 | ef0650550269081de646357c095792813b24c790927fb53317ceafbb8d412f20; Download | Favorite | View

Debian Security Advisory 3047-1: Posted Oct 9, 2014; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3047-1 - Mancha discovered a vulnerability in rsyslog, a system for log processing. This vulnerability is an integer overflow that can be triggered by malformed messages to a server, if this one accepts data from untrusted sources, provoking message loss.; tags | advisory, overflow; systems | linux, debian; advisories | CVE-2014-3683; SHA-256 | 5d4ed68255bfd84dc2a47d2f8636005fd1380871bf309ffd981db72790a94bbf; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
Ubuntu 55 files
LiquidWorm 20 files
Debian 18 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,158)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,830)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,245)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

CVE-2014-3683

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems