QwikSec

Security Database

CVE

CWE

Training

CVE-2011-1951

Published: Jul 11, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

lib/logmatcher.c in Balabit syslog-ng before 3.2.4, when the global flag is set and when using PCRE 8.12 and possibly other versions, allows remote attackers to cause a denial of service (memory consumption) via a message that does not match a regular expression.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://git.balabit.hu/?p=bazsi/syslog-ng-3.2.git%3Ba=commit%3Bh=09710c0b105e579d35c7b5f6c66d1ea5e3a3d3ff

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=709088

x_refsource_MISC

[oss-security] 20110526 CVE Request -- syslog-ng -- Possible DoS

mailing-list

x_refsource_MLIST

FEDORA-2011-8405

vendor-advisory

x_refsource_FEDORA

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.