Bug 157116 - CAN-2005-1061 logwatch log processing regular expression DoS
CAN-2005-1061 logwatch log processing regular expression DoS
Status: CLOSED WONTFIX
Product: Fedora Legacy
Classification: Retired
Component: logwatch (Show other bugs)
rhl7.3
All Linux
medium Severity medium
: ---
: ---
Assigned To: Fedora Legacy Bugs
http://cve.mitre.org/cgi-bin/cvename....
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2005-05-06 19:54 EDT by Dominic Hargreaves
Modified: 2008-05-01 11:38 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2007-08-30 16:04:15 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Bugzilla 137502 None None None Never

  None (edit)
Description Dominic Hargreaves 2005-05-06 19:54:21 EDT
The secure script in LogWatch before 2.6-2 allows attackers to prevent LogWatch
from detecting malicious activity via certain strings in the secure file that
are later used as part of a regular expression, which causes the parser to
crash, aka "logwatch log processing regular expression DoS."

Probably affects at least rh 7.3.
Comment 1 Jesse Keating 2007-08-30 16:04:15 EDT
Fedora Legacy project has ended.  These will not be fixed by Fedora Legacy.

Note You need to log in before you can comment on or make changes to this bug.