CVE-2014-3634

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2014-3634
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2014-3634.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2014-3634
Related
Published
2014-11-02T00:55:05Z
Modified
2024-09-18T01:00:21Z
Summary
[none]
Details

rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.

References

Affected packages

Debian:11 / inetutils

Package

Name
inetutils
Purl
pkg:deb/debian/inetutils?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:1.9.2.39.3a460-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12 / inetutils

Package

Name
inetutils
Purl
pkg:deb/debian/inetutils?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:1.9.2.39.3a460-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / inetutils

Package

Name
inetutils
Purl
pkg:deb/debian/inetutils?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:1.9.2.39.3a460-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:11 / rsyslog

Package

Name
rsyslog
Purl
pkg:deb/debian/rsyslog?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12 / rsyslog

Package

Name
rsyslog
Purl
pkg:deb/debian/rsyslog?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / rsyslog

Package

Name
rsyslog
Purl
pkg:deb/debian/rsyslog?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}