[ubuntu/trusty-security] rsyslog 7.4.4-1ubuntu2.3 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Oct 9 16:35:27 UTC 2014
rsyslog (7.4.4-1ubuntu2.3) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
invalid PRI value
- debian/patches/CVE-2014-3634.patch: limit PRI values in
grammar/rainerscript.h, plugins/imfile/imfile.c,
plugins/imklog/imklog.c, plugins/imkmsg/imkmsg.c,
plugins/imsolaris/imsolaris.c, plugins/imuxsock/imuxsock.c,
runtime/msg.c, runtime/parser.c, runtime/rsyslog.h,
runtime/srutils.c, runtime/syslogd-types.h, runtime/typedefs.h,
tools/syslogd.c.
- CVE-2014-3634
- CVE-2014-3683
Date: 2014-10-02 15:54:44.196169+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/trusty/+source/rsyslog/7.4.4-1ubuntu2.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list