Oval Definition:oval:com.redhat.rhsa:def:20110324
Revision Date:2011-03-07Version:636
Title:RHSA-2011:0324: logwatch security update (Important)
Description:Logwatch is a customizable log analysis system. Logwatch parses through your system's logs for a given period of time and creates a report analyzing areas that you specify, in as much detail as you require.

  • A flaw was found in the way Logwatch processed log files. If an attacker were able to create a log file with a malicious file name, it could result in arbitrary code execution with the privileges of the root user when that log file is analyzed by Logwatch. (CVE-2011-1018)

    Users of logwatch should upgrade to this updated package, which contains a backported patch to resolve this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2011-1018
    CVE-2011-1018
    RHSA-2011:0324
    RHSA-2011:0324-01
    RHSA-2011:0324-01
    Platform(s):Red Hat Enterprise Linux 5
    Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND logwatch is earlier than 0:7.3.6-49.el6
  • AND logwatch is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND logwatch is earlier than 0:7.3-9.el5_6
  • AND logwatch is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • logwatch is earlier than 0:7.3.6-49.el6
  • AND logwatch is signed with Red Hat redhatrelease2 key
  • AND Package Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
    • BACK