Oval Definition:oval:com.redhat.rhsa:def:20201000
Revision Date:2020-03-31Version:636
Title:RHSA-2020:1000: rsyslog security, bug fix, and enhancement update (Moderate)
Description:The rsyslog packages provide an enhanced, multi-threaded syslog daemon. It supports MySQL, syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part, and fine-grained control over output format.

Security Fix(es):

  • rsyslog: heap-based overflow in contrib/pmaixforwardedfrom/pmaixforwardedfrom.c (CVE-2019-17041)

  • rsyslog: heap-based overflow in contrib/pmcisconames/pmcisconames.c (CVE-2019-17042)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2019-17041
    CVE-2019-17042
    RHSA-2020:1000
    Platform(s):Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • rsyslog is earlier than 0:8.24.0-52.el7
  • AND rsyslog is signed with Red Hat redhatrelease2 key
  • rsyslog-crypto is earlier than 0:8.24.0-52.el7
  • AND rsyslog-crypto is signed with Red Hat redhatrelease2 key
  • rsyslog-doc is earlier than 0:8.24.0-52.el7
  • AND rsyslog-doc is signed with Red Hat redhatrelease2 key
  • rsyslog-elasticsearch is earlier than 0:8.24.0-52.el7
  • AND rsyslog-elasticsearch is signed with Red Hat redhatrelease2 key
  • rsyslog-gnutls is earlier than 0:8.24.0-52.el7
  • AND rsyslog-gnutls is signed with Red Hat redhatrelease2 key
  • rsyslog-gssapi is earlier than 0:8.24.0-52.el7
  • AND rsyslog-gssapi is signed with Red Hat redhatrelease2 key
  • rsyslog-kafka is earlier than 0:8.24.0-52.el7
  • AND rsyslog-kafka is signed with Red Hat redhatrelease2 key
  • rsyslog-libdbi is earlier than 0:8.24.0-52.el7
  • AND rsyslog-libdbi is signed with Red Hat redhatrelease2 key
  • rsyslog-mmaudit is earlier than 0:8.24.0-52.el7
  • AND rsyslog-mmaudit is signed with Red Hat redhatrelease2 key
  • rsyslog-mmjsonparse is earlier than 0:8.24.0-52.el7
  • AND rsyslog-mmjsonparse is signed with Red Hat redhatrelease2 key
  • rsyslog-mmkubernetes is earlier than 0:8.24.0-52.el7
  • AND rsyslog-mmkubernetes is signed with Red Hat redhatrelease2 key
  • rsyslog-mmnormalize is earlier than 0:8.24.0-52.el7
  • AND rsyslog-mmnormalize is signed with Red Hat redhatrelease2 key
  • rsyslog-mmsnmptrapd is earlier than 0:8.24.0-52.el7
  • AND rsyslog-mmsnmptrapd is signed with Red Hat redhatrelease2 key
  • rsyslog-mysql is earlier than 0:8.24.0-52.el7
  • AND rsyslog-mysql is signed with Red Hat redhatrelease2 key
  • rsyslog-pgsql is earlier than 0:8.24.0-52.el7
  • AND rsyslog-pgsql is signed with Red Hat redhatrelease2 key
  • rsyslog-relp is earlier than 0:8.24.0-52.el7
  • AND rsyslog-relp is signed with Red Hat redhatrelease2 key
  • rsyslog-snmp is earlier than 0:8.24.0-52.el7
  • AND rsyslog-snmp is signed with Red Hat redhatrelease2 key
  • rsyslog-udpspoof is earlier than 0:8.24.0-52.el7
  • AND rsyslog-udpspoof is signed with Red Hat redhatrelease2 key
    • BACK