Discover Government News

--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2023-43eb573065
2023-02-15 01:19:12.058970
--------------------------------------------------------------------------------Name        : syslog-ng
Product     : Fedora 36
Version     : 3.35.1
Release     : 4.fc36
URL         : https://www.syslog-ng.com/products/open-source-log-management/
Summary     : Next-generation syslog server
Description :
syslog-ng is an enhanced log daemon, supporting a wide range of input and
output methods: syslog, unstructured text, message queues, databases (SQL
and NoSQL alike) and more.

Key features:

 * receive and send RFC3164 and RFC5424 style syslog messages
 * work with any kind of unstructured data
 * receive and send JSON formatted messages
 * classify and structure logs with builtin parsers (csv-parser(),
   db-parser(), ...)
 * normalize, crunch and process logs as they flow through the system
 * hand on messages for further processing using message queues (like
   AMQP), files or databases (like PostgreSQL or MongoDB).

--------------------------------------------------------------------------------Update Information:

Security fix for CVE-2022-38725
--------------------------------------------------------------------------------ChangeLog:

* Mon Feb  6 2023 Peter Czanik  - 3.35.1-4
- add 4110.diff to fix CVE-2022-38725
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #2164618 - CVE-2022-38725 syslog-ng: integer overflow in the RFC3164 parser can lead to DoS
        https://bugzilla.redhat.com/show_bug.cgi?id=2164618
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-43eb573065' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Do not reply to spam, report it: https://pagure.io/login/

Fedora 36: syslog-ng 2023-43eb573065

February 15, 2023
Security fix for CVE-2022-38725

Summary

syslog-ng is an enhanced log daemon, supporting a wide range of input and

output methods: syslog, unstructured text, message queues, databases (SQL

and NoSQL alike) and more.

Key features:

* receive and send RFC3164 and RFC5424 style syslog messages

* work with any kind of unstructured data

* receive and send JSON formatted messages

* classify and structure logs with builtin parsers (csv-parser(),

db-parser(), ...)

* normalize, crunch and process logs as they flow through the system

* hand on messages for further processing using message queues (like

AMQP), files or databases (like PostgreSQL or MongoDB).

Security fix for CVE-2022-38725

* Mon Feb 6 2023 Peter Czanik - 3.35.1-4

- add 4110.diff to fix CVE-2022-38725

[ 1 ] Bug #2164618 - CVE-2022-38725 syslog-ng: integer overflow in the RFC3164 parser can lead to DoS

https://bugzilla.redhat.com/show_bug.cgi?id=2164618

su -c 'dnf upgrade --advisory FEDORA-2023-43eb573065' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it: https://pagure.io/login/

FEDORA-2023-43eb573065 2023-02-15 01:19:12.058970 Product : Fedora 36 Version : 3.35.1 Release : 4.fc36 URL : https://www.syslog-ng.com/products/open-source-log-management/ Summary : Next-generation syslog server Description : syslog-ng is an enhanced log daemon, supporting a wide range of input and output methods: syslog, unstructured text, message queues, databases (SQL and NoSQL alike) and more. Key features: * receive and send RFC3164 and RFC5424 style syslog messages * work with any kind of unstructured data * receive and send JSON formatted messages * classify and structure logs with builtin parsers (csv-parser(), db-parser(), ...) * normalize, crunch and process logs as they flow through the system * hand on messages for further processing using message queues (like AMQP), files or databases (like PostgreSQL or MongoDB). Security fix for CVE-2022-38725 * Mon Feb 6 2023 Peter Czanik - 3.35.1-4 - add 4110.diff to fix CVE-2022-38725 [ 1 ] Bug #2164618 - CVE-2022-38725 syslog-ng: integer overflow in the RFC3164 parser can lead to DoS https://bugzilla.redhat.com/show_bug.cgi?id=2164618 su -c 'dnf upgrade --advisory FEDORA-2023-43eb573065' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/ Do not reply to spam, report it: https://pagure.io/login/

Change Log

References

Update Instructions

Severity
Product : Fedora 36
Version : 3.35.1
Release : 4.fc36
URL : https://www.syslog-ng.com/products/open-source-log-management/
Summary : Next-generation syslog server

Related News