Bug 426173 (CVE-2007-6437)
Summary: | CVE-2007-6437 syslog-ng crash by message with invalid timestamp separator | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Lubomir Kundrak <lkundrak> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | unspecified | CC: | pvrabec, silfreed |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://seclists.org/bugtraq/2007/Dec/0202.html | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2008-01-17 10:09:08 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 304121, 426305, 426306, 426307 | ||
Bug Blocks: |
Description
Lubomir Kundrak
2007-12-18 23:11:55 UTC
Bump 2.0.6 would also fix the issue. CVE ID was requested I'm working on getting 2.0.6 built in rawhide right now. syslog-ng-2.0.7-1.fc8 has been pushed to the Fedora 8 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update syslog-ng' syslog-ng-2.0.7-1.fc7 has been pushed to the Fedora 7 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update syslog-ng' This issue was addressed in: Fedora: https://admin.fedoraproject.org/updates/F7/FEDORA-2008-0559 https://admin.fedoraproject.org/updates/F8/FEDORA-2008-0523 syslog-ng-2.0.7-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report. syslog-ng-2.0.7-1.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report. |