CVE-2014-3634
Description
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
29.383
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Enhanced syslogd (USN-2381-1) rsyslog_7.4.4-1ubuntu2.3_i386.deb | Linux |
| Enhanced syslogd (USN-2381-1) rsyslog_7.4.4-1ubuntu2.3_amd64.deb | Linux |
| rsyslog security update(DSA-3047-1) rsyslog_5.8.11-3+deb7u2_i386.deb | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-crypto-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-doc-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-elasticsearch-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-gnutls-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-gssapi-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-libdbi-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-mmaudit-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-mmjsonparse-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-mmnormalize-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-mmsnmptrapd-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-mysql-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-pgsql-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-relp-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-snmp-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1397) Important: rsyslog security update rsyslog-udpspoof-7.4.7-7.el7_0.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-elasticsearch-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-elasticsearch-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-gnutls-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-gnutls-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-gssapi-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-gssapi-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-mysql-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-mysql-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-pgsql-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-pgsql-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-relp-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-relp-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-snmp-7.4.10-3.el6_6.i686.rpm | Linux |
| (RHSA-2014:1654) Important: rsyslog7 security update rsyslog7-snmp-7.4.10-3.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-gnutls-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-gnutls-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-gssapi-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-gssapi-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-mysql-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-mysql-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-pgsql-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-pgsql-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-relp-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-relp-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-snmp-5.8.10-9.el6_6.i686.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog-snmp-5.8.10-9.el6_6.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-5.8.12-5.el5_11.i386.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-5.8.12-5.el5_11.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-gnutls-5.8.12-5.el5_11.i386.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-gnutls-5.8.12-5.el5_11.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-gssapi-5.8.12-5.el5_11.i386.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-gssapi-5.8.12-5.el5_11.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-mysql-5.8.12-5.el5_11.i386.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-mysql-5.8.12-5.el5_11.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-pgsql-5.8.12-5.el5_11.i386.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-pgsql-5.8.12-5.el5_11.x86_64.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-snmp-5.8.12-5.el5_11.i386.rpm | Linux |
| (RHSA-2014:1671) Moderate: rsyslog5 and rsyslog security update rsyslog5-snmp-5.8.12-5.el5_11.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-doc-8.24.0-57.amzn2.2.0.1.noarch.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-relp-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-snmp-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-kafka-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-mysql-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-pgsql-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-crypto-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-gnutls-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-gssapi-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-libdbi-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-mmaudit-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-udpspoof-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-mmjsonparse-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-mmnormalize-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-mmsnmptrapd-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-mmkubernetes-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2022-1803) rsyslog-elasticsearch-8.24.0-57.amzn2.2.0.1.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-doc-8.2204.0-3.amzn2023.0.2.noarch.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-crypto-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-mmaudit-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-openssl-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-mmfields-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-logrotate-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-mmjsonparse-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-mmnormalize-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-mmkubernetes-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS-2023-001) rsyslog-elasticsearch-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-crypto-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-doc-8.2204.0-3.amzn2023.0.2.noarch.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-elasticsearch-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-logrotate-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-mmaudit-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-mmfields-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-mmjsonparse-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-mmkubernetes-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-mmnormalize-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| rsyslog Security Update (ALAS2023-2023-001) rsyslog-openssl-8.2204.0-3.amzn2023.0.2.x86_64.rpm | Linux |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2014-3634) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234