You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa rsyslog

Sigurnosni nedostaci programskog paketa rsyslog

——————————————————————————–
Fedora Update Notification
FEDORA-2018-749f2bae28
2018-08-11 19:09:25.081186
——————————————————————————–

Name : rsyslog
Product : Fedora 28
Version : 8.37.0
Release : 1.fc28
URL : http://www.rsyslog.com/
Summary : Enhanced system logging and kernel message trapping daemon
Description :
Rsyslog is an enhanced, multi-threaded syslog daemon. It supports MySQL,
syslog/TCP, RFC 3195, permitted sender lists, filtering on any message part,
and fine grain output format control. It is compatible with stock sysklogd
and can be used as a drop-in replacement. Rsyslog is simple to set up, with
advanced features suitable for enterprise-class, encryption-protected syslog
relay chains.

——————————————————————————–
Update Information:

rebase to 8.37.0 ———————- – few fixes and enhancements handling
journal input – now requires librelp at least 1.2.16, adding support for setting
address to bind – various other rsyslog core bugfixes and stability fixes
——————————————————————————–
ChangeLog:

* Wed Aug 8 2018 Jiri Vymazal <jvymazal@redhat.com> – 8.37.0-1
– rebase to upstream version 8.37.0
resolves: rhbz#1612079
resolves: rhbz#1598217
resolves: rhbz#1544139
– dropped needless libee dependency
* Wed Jul 25 2018 Jiri Vymazal <jvymazal@redhat.com> – 8.36.0-3
– fixed a typo in commented-out part of default conf + reordered it
resolves: rhbz#1579592
* Tue Jul 24 2018 Jason L Tibbitts III <tibbs@math.uh.edu> – 8.36.0-3
– Rebuild for unannounced net-snmp soversion bump.
– Use python3-docutils because rst2man has moved there.
* Mon Jul 23 2018 Jiri Vymazal <jvymazal@redhat.com> – 8.36.0-2
– added gcc to buildrequires following f29 system-wide change
* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> – 8.36.0-2
– Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Mon Jul 2 2018 Jiri Vymazal <jvymazal@redhat.com> – 8.36.0-1
– rebase to 8.36.0
– removed stdlog dependency as upstream is going to drop it
– following upstream naming of pidfile
– removed needless conditionals
* Fri Jun 8 2018 Remi Collet <remi@remirepo.net> – 8.35.0-4
– rebuild with libbson and libmongc 1.10.2 (soname back to 0)
* Mon May 28 2018 Remi Collet <remi@remirepo.net> – 8.35.0-3
– rebuild with libbson and libmongc 1.10.0
* Thu May 17 2018 Radovan Sroka <rsroka@redhat.com> – 8.35.0-2
– rebase to 8.35.0
——————————————————————————–
References:

[ 1 ] Bug #1598217 – rsyslog: Buffer overflow in SanitizeMsg() function in runtime/parser.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1598217
[ 2 ] Bug #1544139 – rsyslogd: imjournal: open on state file `/var/lib/rsyslog/imjournal.state’ failed [v8.32.0 try http://www.rsyslog.com/e/2013 ]
https://bugzilla.redhat.com/show_bug.cgi?id=1544139
[ 3 ] Bug #1612079 – rsyslog-8.37.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1612079
[ 4 ] Bug #1579592 – SELinux is preventing in:imjournal from using the ‘dac_override’ capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1579592
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-749f2bae28’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OUMCAI6AR6Y7QYDY4WNTRCRVKY7PCM53/

Top
More in Preporuke
Sigurnosni nedostaci programske biblioteke mingw-glibmm24

Otkriveni su sigurnosni nedostaci programske biblioteke mingw-glibmm24 za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja i...

Close