[USN-1224-1] rsyslog vulnerability
jamie at canonical.com
Mon Oct 3 21:29:15 UTC 2011
Ubuntu Security Notice USN-1224-1
October 03, 2011
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 11.04
Rsyslog could be made to crash if it processed a specially crafted message.
- rsyslog: enhanced multi-threaded syslogd
It was discovered that rsyslog had an off-by-two error when parsing legacy
syslog messages. An attacker could potentially exploit this to cause a
denial of service via application crash.
The problem can be corrected by updating your system to the following
In general, a standard system update will make all the necessary changes.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 836 bytes
Desc: This is a digitally signed message part
More information about the ubuntu-security-announce