CVE-2017-12588
N/A
N/A
Summary
The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as format strings, possibly allowing a format string attack with unspecified impact.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/rsyslog/rsyslog/pull/1565
- https://github.com/rsyslog/rsyslog/commit/062d0c671a29f7c6f7dff4a2f1f35df375bbb30b
- https://github.com/rsyslog/rsyslog/blob/master/ChangeLog
- https://security.netapp.com/advisory/ntap-20241227-0009/
References
- https://github.com/rsyslog/rsyslog/pull/1565
- https://github.com/rsyslog/rsyslog/commit/062d0c671a29f7c6f7dff4a2f1f35df375bbb30b
- https://github.com/rsyslog/rsyslog/blob/master/ChangeLog
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.