A use after free vulnerability was found in syslog-ng before 3.19.1. A crafted file could cause the application to crash. Upstream issues: https://github.com/balabit/syslog-ng/pull/2418 https://github.com/balabit/syslog-ng/issues/2454 References: https://seclists.org/oss-sec/2018/q4/273
Created syslog-ng tracking bugs for this issue: Affects: epel-all [bug 1663937] Affects: fedora-all [bug 1663936]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.