Red Hat 6 ELS RHSA-2022:4808-01 Important: Rsyslog Buffer Overflow
red hat
May 31, 2022
An update for rsyslog and rsyslog7 is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support
Solution
For details on how to apply this update, which includes the changes
described in this advisory, refer to:
https://access.redhat.com/articles/11258
Summary
The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It
supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on
any message part, and fine-grained control over output format.
The rsyslog7 packages provide an enhanced, multi-threaded syslog daemon. It
supports on-demand disk buffering, reliable syslog over TCP, SSL, TLS and
RELP, writing to databases (MySQL, PostgreSQL, Oracle, and others), email
alerting, fully configurable output formats (including high-precision time
stamps), the ability to filter on any part of the syslog message,
on-the-wire message compression, and the ability to convert text files to
syslog.
Security Fix(es):
* rsyslog: Heap-based overflow in TCP syslog server (CVE-2022-24903)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Topics Covered
References
https://access.redhat.com/security/cve/CVE-2022-24903 https://access.redhat.com/security/updates/classification/#important https://bugzilla.redhat.com/show_bug.cgi?id=2081353
Package List
Red Hat Enterprise Linux Server (v. 6 ELS):
Source:
rsyslog-5.8.10-12.el6_10.1.src.rpm
rsyslog7-7.4.10-7.el6_10.1.src.rpm
i386:
rsyslog-5.8.10-12.el6_10.1.i686.rpm
rsyslog-debuginfo-5.8.10-12.el6_10.1.i686.rpm
rsyslog-gnutls-5.8.10-12.el6_10.1.i686.rpm
rsyslog-gssapi-5.8.10-12.el6_10.1.i686.rpm
rsyslog-mysql-5.8.10-12.el6_10.1.i686.rpm
rsyslog-pgsql-5.8.10-12.el6_10.1.i686.rpm
rsyslog-relp-5.8.10-12.el6_10.1.i686.rpm
rsyslog7-7.4.10-7.el6_10.1.i686.rpm
rsyslog7-debuginfo-7.4.10-7.el6_10.1.i686.rpm
rsyslog7-gnutls-7.4.10-7.el6_10.1.i686.rpm
rsyslog7-gssapi-7.4.10-7.el6_10.1.i686.rpm
rsyslog7-mysql-7.4.10-7.el6_10.1.i686.rpm
rsyslog7-pgsql-7.4.10-7.el6_10.1.i686.rpm
rsyslog7-relp-7.4.10-7.el6_10.1.i686.rpm
s390x:
rsyslog-5.8.10-12.el6_10.1.s390x.rpm
rsyslog-debuginfo-5.8.10-12.el6_10.1.s390x.rpm
rsyslog-gnutls-5.8.10-12.el6_10.1.s390x.rpm
rsyslog-gssapi-5.8.10-12.el6_10.1.s390x.rpm
rsyslog-mysql-5.8.10-12.el6_10.1.s390x.rpm
rsyslog-pgsql-5.8.10-12.el6_10.1.s390x.rpm
rsyslog-relp-5.8.10-12.el6_10.1.s390x.rpm
rsyslog7-7.4.10-7.el6_10.1.s390x.rpm
rsyslog7-debuginfo-7.4.10-7.el6_10.1.s390x.rpm
rsyslog7-gnutls-7.4.10-7.el6_10.1.s390x.rpm
rsyslog7-gssapi-7.4.10-7.el6_10.1.s390x.rpm
rsyslog7-mysql-7.4.10-7.el6_10.1.s390x.rpm
rsyslog7-pgsql-7.4.10-7.el6_10.1.s390x.rpm
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Advisory ID: RHSA-2022:4808-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2022:4808
Issue date: 2022-05-31
Topic
An update for rsyslog and rsyslog7 is now available for Red Hat EnterpriseLinux 6 Extended Lifecycle Support.Red Hat Product Security has rated this update as having a security impactof Important. A Common Vulnerability Scoring System (CVSS) base score,which gives a detailed severity rating, is available for each vulnerabilityfrom the CVE link(s) in the References section.
Topics Covered
Relevant Releases Architectures
Red Hat Enterprise Linux Server (v. 6 ELS) - i386, s390x, x86_64
Red Hat Enterprise Linux Server Optional (v. 6 ELS) - i386, s390x, x86_64
Bugs Fixed
2081353 - CVE-2022-24903 rsyslog: Heap-based overflow in TCP syslog server
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!