CVE-2011-1489
N/A
N/A
Summary
A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service via a log message belonging to more than one ruleset.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| rsyslog | rsyslog | before 5.7.6 | affected |
Weaknesses
- Memory Leak
ADP Enrichment
CVE Program Container
Additional References
- https://security-tracker.debian.org/tracker/CVE-2011-1489
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1489
- https://access.redhat.com/security/cve/cve-2011-1489
- http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html
- https://github.com/rsyslog/rsyslog/commit/1ef709cc97d54f74d3fdeb83788cc4b01f4c6a2a
References
- https://security-tracker.debian.org/tracker/CVE-2011-1489
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1489
- https://access.redhat.com/security/cve/cve-2011-1489
- http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html
- https://github.com/rsyslog/rsyslog/commit/1ef709cc97d54f74d3fdeb83788cc4b01f4c6a2a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.