|
|
Log in / Subscribe / Register

Debian alert DLA-1952-1 (rsyslog)



From:
              "Chris Lamb" <lamby@debian.org> 


To:
              debian-lts-announce@lists.debian.org 


Subject:
              [SECURITY] [DLA 1952-1] rsyslog security update 


Date:
              Wed, 09 Oct 2019 17:12:14 -0700


Message-ID:
              <84279855-43ce-4cf2-8623-9842843df326@www.fastmail.com>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : rsyslog
Version        : 8.4.2-1+deb8u3
CVE IDs        : CVE-2019-17041 CVE-2019-17042
Debian Bugs    : #942065 #942067

It was discovered that there were two vulnerabilities in the rsyslog
system/kernel logging daemon in the parsers for AIX and Cisco log
messages respectfully.

For Debian 8 "Jessie", these issue have been fixed in rsyslog version
8.4.2-1+deb8u3.

We recommend that you upgrade your rsyslog packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=8o8z
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds