CVE-2011-4623
Priority
Medium
Description
An integer signedness error, leading to heap based buffer overflow was found in
the way the imfile module of rsyslog, an enhanced system logging and kernel
message trapping daemon, processed text files larger than 64 KB. When the
imfile rsyslog module was enabled, a local attacker could use this flaw to
cause denial of service (rsyslogd daemon hang) via specially-crafted message,
to be logged.
the way the imfile module of rsyslog, an enhanced system logging and kernel
message trapping daemon, processed text files larger than 64 KB. When the
imfile rsyslog module was enabled, a local attacker could use this flaw to
cause denial of service (rsyslogd daemon hang) via specially-crafted message,
to be logged.
References
Bugs
Notes
tyhicks> The imfile module is built in Lucid and newer, but is not loaded in
tyhicks> the default rsyslog config file.
jdstrand> introduced with d2d54013aebb756169182ed8716b142d27134a70 (part of
4.5.0)
tyhicks> the default rsyslog config file.
jdstrand> introduced with d2d54013aebb756169182ed8716b142d27134a70 (part of
4.5.0)
Assigned-to
jdstrand
Package
| Upstream: | released (4.6.6, 5.7.4) |
| Ubuntu 8.04 LTS (Hardy Heron): | not-affected (code not present) |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected (has correct type) |
| Ubuntu 10.10 (Maverick Meerkat): | not-affected (has correct type) |
| Ubuntu 11.04 (Natty Narwhal): | released (4.6.4-2ubuntu4.2) |
| Ubuntu 11.10 (Oneiric Ocelot): | not-affected (5.8.1-1ubuntu2) |
| Ubuntu 12.04 LTS (Precise Pangolin): | not-affected |
Patches:
| Upstream: | http://git.adiscon.com/?p=rsyslog.git;a=commit;h=6bad782f154b7f838c7371bf99c13f6dc4ec4101 |