CVE-2007-6437

EPSS 5.8%

syslog-ng - remote denial of service

發布日:2007/12/19修改日:2026/4/28

描述

Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x before 2.1.8 allows remote attackers to cause a denial of service (crash) via a message with a timestamp that does not contain a trailing space, which triggers a NULL pointer dereference.

受影響套件(3)

Debian/syslog-ngfrom 0, < 2.0.6-1
Debian/syslog-ngfrom 0, < 2.0.0-1etch1
Debian/syslog-ngfrom 0, < 2.0.5-3+lenny1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6437