Advisories » MGASA-2022-0165

Updated rsyslog packages fix security vulnerability

Publication date: 08 May 2022
Modification date: 08 May 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-24903

Description

Potential heap buffer overflow in TCP syslog server (receiver) components 
(CVE-2022-24903)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=30383
• https://github.com/rsyslog/rsyslog/security/advisories/GHSA-ggw7-xr6h-mmr8
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24903

SRPMS

8/core

• rsyslog-8.2204.1-1.mga8