Upstream information

CVE-2011-3200 at MITRE

Description

Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of service (application exit) via a long TAG in a legacy syslog message.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 5
Vector AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial
SUSE Bugzilla entry: 714658 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 12
  • rsyslog >= 8.4.0-2.2
Patchnames:
SUSE Linux Enterprise Desktop 12 GA rsyslog
SUSE Linux Enterprise Desktop 12 SP1
  • rsyslog >= 8.4.0-8.3
Patchnames:
SUSE Linux Enterprise Desktop 12 SP1 GA rsyslog
SUSE Linux Enterprise Desktop 12 SP2
  • rsyslog >= 8.4.0-14.1
Patchnames:
SUSE Linux Enterprise Desktop 12 SP2 GA rsyslog
SUSE Linux Enterprise Desktop 12 SP3
  • rsyslog >= 8.24.0-1.20
Patchnames:
SUSE Linux Enterprise Desktop 12 SP3 GA rsyslog
SUSE Linux Enterprise Module for Basesystem 15
  • rsyslog >= 8.33.1-1.30
Patchnames:
SUSE Linux Enterprise Module for Basesystem 15 GA rsyslog
SUSE Linux Enterprise Module for Server Applications 15
  • rsyslog-module-gssapi >= 8.33.1-1.30
  • rsyslog-module-mysql >= 8.33.1-1.30
  • rsyslog-module-pgsql >= 8.33.1-1.30
  • rsyslog-module-relp >= 8.33.1-1.30
  • rsyslog-module-snmp >= 8.33.1-1.30
  • rsyslog-module-udpspoof >= 8.33.1-1.30
Patchnames:
SUSE Linux Enterprise Module for Server Applications 15 GA rsyslog-module-gssapi
SUSE Linux Enterprise Server 11 SP2
  • rsyslog >= 5.8.7-0.5.5
  • rsyslog-diag-tools >= 5.8.7-0.5.5
  • rsyslog-doc >= 5.8.7-0.5.5
  • rsyslog-module-gssapi >= 5.8.7-0.5.5
  • rsyslog-module-gtls >= 5.8.7-0.5.5
  • rsyslog-module-mysql >= 5.8.7-0.5.5
  • rsyslog-module-pgsql >= 5.8.7-0.5.5
  • rsyslog-module-relp >= 5.8.7-0.5.5
  • rsyslog-module-snmp >= 5.8.7-0.5.5
  • rsyslog-module-udpspoof >= 5.8.7-0.5.5
Patchnames:
SUSE Linux Enterprise Server 11 SP2 GA rsyslog
SUSE Linux Enterprise Server 11 SP3
  • rsyslog >= 5.10.1-0.7.49
  • rsyslog-diag-tools >= 5.10.1-0.7.49
  • rsyslog-doc >= 5.10.1-0.7.49
  • rsyslog-module-gssapi >= 5.10.1-0.7.49
  • rsyslog-module-gtls >= 5.10.1-0.7.49
  • rsyslog-module-mysql >= 5.10.1-0.7.49
  • rsyslog-module-pgsql >= 5.10.1-0.7.49
  • rsyslog-module-relp >= 5.10.1-0.7.49
  • rsyslog-module-snmp >= 5.10.1-0.7.49
  • rsyslog-module-udpspoof >= 5.10.1-0.7.49
Patchnames:
SUSE Linux Enterprise Server 11 SP3 GA rsyslog
SUSE Linux Enterprise Server 11 SP4
  • rsyslog >= 5.10.1-0.11.1
  • rsyslog-diag-tools >= 5.10.1-0.11.1
  • rsyslog-doc >= 5.10.1-0.11.1
  • rsyslog-module-gssapi >= 5.10.1-0.11.1
  • rsyslog-module-gtls >= 5.10.1-0.11.1
  • rsyslog-module-mysql >= 5.10.1-0.11.1
  • rsyslog-module-pgsql >= 5.10.1-0.11.1
  • rsyslog-module-relp >= 5.10.1-0.11.1
  • rsyslog-module-snmp >= 5.10.1-0.11.1
  • rsyslog-module-udpspoof >= 5.10.1-0.11.1
Patchnames:
SUSE Linux Enterprise Server 11 SP4 GA rsyslog
SUSE Linux Enterprise Server 12
  • rsyslog >= 8.4.0-2.2
  • rsyslog-diag-tools >= 8.4.0-2.2
  • rsyslog-doc >= 8.4.0-2.2
  • rsyslog-module-gssapi >= 8.4.0-2.2
  • rsyslog-module-gtls >= 8.4.0-2.2
  • rsyslog-module-mysql >= 8.4.0-2.2
  • rsyslog-module-pgsql >= 8.4.0-2.2
  • rsyslog-module-relp >= 8.4.0-2.2
  • rsyslog-module-snmp >= 8.4.0-2.2
  • rsyslog-module-udpspoof >= 8.4.0-2.2
Patchnames:
SUSE Linux Enterprise Server 12 GA rsyslog
SUSE Linux Enterprise Server 12 SP1
  • rsyslog >= 8.4.0-8.3
  • rsyslog-diag-tools >= 8.4.0-8.3
  • rsyslog-doc >= 8.4.0-8.3
  • rsyslog-module-gssapi >= 8.4.0-8.3
  • rsyslog-module-gtls >= 8.4.0-8.3
  • rsyslog-module-mysql >= 8.4.0-8.3
  • rsyslog-module-pgsql >= 8.4.0-8.3
  • rsyslog-module-relp >= 8.4.0-8.3
  • rsyslog-module-snmp >= 8.4.0-8.3
  • rsyslog-module-udpspoof >= 8.4.0-8.3
Patchnames:
SUSE Linux Enterprise Server 12 SP1 GA rsyslog
SUSE Linux Enterprise Server 12 SP2
  • rsyslog >= 8.4.0-14.1
  • rsyslog-diag-tools >= 8.4.0-14.1
  • rsyslog-doc >= 8.4.0-14.1
  • rsyslog-module-gssapi >= 8.4.0-14.1
  • rsyslog-module-gtls >= 8.4.0-14.1
  • rsyslog-module-mysql >= 8.4.0-14.1
  • rsyslog-module-pgsql >= 8.4.0-14.1
  • rsyslog-module-relp >= 8.4.0-14.1
  • rsyslog-module-snmp >= 8.4.0-14.1
  • rsyslog-module-udpspoof >= 8.4.0-14.1
Patchnames:
SUSE Linux Enterprise Server 12 SP2 GA rsyslog
SUSE Linux Enterprise Server 12 SP3
  • rsyslog >= 8.24.0-1.20
  • rsyslog-diag-tools >= 8.24.0-1.20
  • rsyslog-doc >= 8.24.0-1.20
  • rsyslog-module-gssapi >= 8.24.0-1.20
  • rsyslog-module-gtls >= 8.24.0-1.20
  • rsyslog-module-mysql >= 8.24.0-1.20
  • rsyslog-module-pgsql >= 8.24.0-1.20
  • rsyslog-module-relp >= 8.24.0-1.20
  • rsyslog-module-snmp >= 8.24.0-1.20
  • rsyslog-module-udpspoof >= 8.24.0-1.20
Patchnames:
SUSE Linux Enterprise Server 12 SP3 GA rsyslog
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
  • rsyslog >= 8.4.0-14.1
  • rsyslog-diag-tools >= 8.4.0-14.1
  • rsyslog-doc >= 8.4.0-14.1
  • rsyslog-module-gssapi >= 8.4.0-14.1
  • rsyslog-module-gtls >= 8.4.0-14.1
  • rsyslog-module-mysql >= 8.4.0-14.1
  • rsyslog-module-pgsql >= 8.4.0-14.1
  • rsyslog-module-relp >= 8.4.0-14.1
  • rsyslog-module-snmp >= 8.4.0-14.1
  • rsyslog-module-udpspoof >= 8.4.0-14.1
Patchnames:
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA rsyslog
openSUSE 11.3
  • rsyslog-debuginfo >= 5.4.0-3.2.1
  • rsyslog-debugsource >= 5.4.0-3.2.1
  • rsyslog-diag-tools-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-gssapi-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-gtls-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-mysql-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-pgsql-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-relp-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-snmp-debuginfo >= 5.4.0-3.2.1
  • rsyslog-module-udpspoof-debuginfo >= 5.4.0-3.2.1
openSUSE 11.3
  • rsyslog >= 5.4.0-3.2.1
  • rsyslog-diag-tools >= 5.4.0-3.2.1
  • rsyslog-doc >= 5.4.0-3.2.1
  • rsyslog-module-gssapi >= 5.4.0-3.2.1
  • rsyslog-module-gtls >= 5.4.0-3.2.1
  • rsyslog-module-mysql >= 5.4.0-3.2.1
  • rsyslog-module-pgsql >= 5.4.0-3.2.1
  • rsyslog-module-relp >= 5.4.0-3.2.1
  • rsyslog-module-snmp >= 5.4.0-3.2.1
  • rsyslog-module-udpspoof >= 5.4.0-3.2.1
openSUSE 11.4
  • rsyslog >= 5.6.5-1.5.1
  • rsyslog-diag-tools >= 5.6.5-1.5.1
  • rsyslog-doc >= 5.6.5-1.5.1
  • rsyslog-module-dbi >= 5.6.5-1.5.1
  • rsyslog-module-gssapi >= 5.6.5-1.5.1
  • rsyslog-module-gtls >= 5.6.5-1.5.1
  • rsyslog-module-mysql >= 5.6.5-1.5.1
  • rsyslog-module-pgsql >= 5.6.5-1.5.1
  • rsyslog-module-relp >= 5.6.5-1.5.1
  • rsyslog-module-snmp >= 5.6.5-1.5.1
  • rsyslog-module-udpspoof >= 5.6.5-1.5.1
openSUSE 11.4
  • rsyslog >= 5.6.5-1.5.1
  • rsyslog-debuginfo >= 5.6.5-1.5.1
  • rsyslog-debugsource >= 5.6.5-1.5.1
  • rsyslog-diag-tools >= 5.6.5-1.5.1
  • rsyslog-diag-tools-debuginfo >= 5.6.5-1.5.1
  • rsyslog-doc >= 5.6.5-1.5.1
  • rsyslog-module-dbi >= 5.6.5-1.5.1
  • rsyslog-module-dbi-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-gssapi >= 5.6.5-1.5.1
  • rsyslog-module-gssapi-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-gtls >= 5.6.5-1.5.1
  • rsyslog-module-gtls-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-mysql >= 5.6.5-1.5.1
  • rsyslog-module-mysql-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-pgsql >= 5.6.5-1.5.1
  • rsyslog-module-pgsql-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-relp >= 5.6.5-1.5.1
  • rsyslog-module-relp-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-snmp >= 5.6.5-1.5.1
  • rsyslog-module-snmp-debuginfo >= 5.6.5-1.5.1
  • rsyslog-module-udpspoof >= 5.6.5-1.5.1
  • rsyslog-module-udpspoof-debuginfo >= 5.6.5-1.5.1
Patchnames:
rsyslog
openSUSE Leap 42.1
  • rsyslog >= 8.4.0-3.1
Patchnames:
openSUSE Leap 42.1 GA rsyslog
openSUSE Leap 42.3
  • rsyslog >= 8.24.0-1.3
Patchnames:
openSUSE Leap 42.3 GA rsyslog
openSUSE Tumbleweed
  • rsyslog >= 8.23.0-2.1
  • rsyslog-diag-tools >= 8.23.0-2.1
  • rsyslog-doc >= 8.23.0-2.1
  • rsyslog-module-dbi >= 8.23.0-2.1
  • rsyslog-module-elasticsearch >= 8.23.0-2.1
  • rsyslog-module-gcrypt >= 8.23.0-2.1
  • rsyslog-module-gssapi >= 8.23.0-2.1
  • rsyslog-module-gtls >= 8.23.0-2.1
  • rsyslog-module-guardtime >= 8.23.0-2.1
  • rsyslog-module-mmnormalize >= 8.23.0-2.1
  • rsyslog-module-mysql >= 8.23.0-2.1
  • rsyslog-module-omamqp1 >= 8.23.0-2.1
  • rsyslog-module-omhttpfs >= 8.23.0-2.1
  • rsyslog-module-omtcl >= 8.23.0-2.1
  • rsyslog-module-pgsql >= 8.23.0-2.1
  • rsyslog-module-relp >= 8.23.0-2.1
  • rsyslog-module-snmp >= 8.23.0-2.1
  • rsyslog-module-udpspoof >= 8.23.0-2.1
Patchnames:
openSUSE Tumbleweed GA rsyslog