Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=c6641b579ab5392db6995343f13e70a38d59df30
commit c6641b579ab5392db6995343f13e70a38d59df30 Author: voroskoi <[EMAIL PROTECTED]> Date: Mon Jan 21 20:28:28 2008 +0100 FSA350-syslog-ng diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml index 9b7b960..350de4c 100644 --- a/frugalware/xml/security.xml +++ b/frugalware/xml/security.xml @@ -27,6 +27,18 @@ <fsas> <fsa> + <id>350</id> + <date>2008-01-21</date> + <author>voroskoi</author> + <package>syslog-ng</package> + <vulnerable>2.0.5-1</vulnerable> + <unaffected>2.0.5-2sayshell1</unaffected> + <bts>http://bugs.frugalware.org/task/2675</bts> + <cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6437</cve> + <desc>A vulnerability has been reported in syslog-ng, which can be exploited by malicious people to cause a DoS (Denial of Service). + The vulnerability is caused due to the improper processing of incoming timestamps. This can be exploited to trigger a NULL pointer dereference via a specially crafted message containing a timestamp without a terminating space character.</desc> + </fsa> + <fsa> <id>349</id> <date>2008-01-21</date> <author>voroskoi</author> _______________________________________________ Frugalware-git mailing list [email protected] http://frugalware.org/mailman/listinfo/frugalware-git
