CLSA-2022-1652706309

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2022-1652706309

Upstream

CVE-2018-16881

CVE-2019-17041

CVE-2019-17042

Published

2022-05-16T13:05:09Z

Modified

2026-06-04T10:03:54.260663043Z

Summary

Fix CVE(s): CVE-2019-17041, CVE-2019-17042, CVE-2018-16881

Details

SECURITY UPDATE: denial of dervice
- debian/patches/CVE-2018-16881.patch: introduces a frame size check in the processDataRcvd function of plugins/imptcp/imptcp.c.
- CVE-2018-16881
SECURITY UPDATE: heap-based overflow
- debian/patches/CVE-2019-17041.patch: adds length checks for invalid AIX log message in contrib/pmaixforwardedfrom/pmaixforwardedfrom.c.
- CVE-2019-17041
SECURITY UPDATE: heap-based overflow
- debian/patches/CVE-2019-17042.patch: adds length checks for invalid Cisco log messages in contrib/pmcisconames/pmcisconames.c.
- CVE-2019-17042

References

https://errata.cloudlinux.com/ubuntu16_04/CLSA-2022-1652706309

Affected packages

TuxCare:Ubuntu:16.04

rsyslog

Package

Name: rsyslog
Purl: pkg:deb/tuxcare/rsyslog?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"

rsyslog-elasticsearch

Package

Name: rsyslog-elasticsearch
Purl: pkg:deb/tuxcare/rsyslog-elasticsearch?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"

rsyslog-gnutls

Package

Name: rsyslog-gnutls
Purl: pkg:deb/tuxcare/rsyslog-gnutls?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"

rsyslog-gssapi

Package

Name: rsyslog-gssapi
Purl: pkg:deb/tuxcare/rsyslog-gssapi?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"

rsyslog-mysql

Package

Name: rsyslog-mysql
Purl: pkg:deb/tuxcare/rsyslog-mysql?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"

rsyslog-pgsql

Package

Name: rsyslog-pgsql
Purl: pkg:deb/tuxcare/rsyslog-pgsql?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"

rsyslog-relp

Package

Name: rsyslog-relp
Purl: pkg:deb/tuxcare/rsyslog-relp?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.16.0-1ubuntu3.1+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1652706309.json"