CVE-2011-1489

MEDIUM

rsyslog <5.7.6 - Memory Corruption

Title source: llm

Description

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service via a log message belonging to more than one ruleset.

References (5)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html

[Exploit, Patch, Third Party Advisory] https://access.redhat.com/security/cve/cve-2011-1489

[Issue Tracking, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1489

[Patch, Third Party Advisory] https://github.com/rsyslog/rsyslog/commit/1ef709cc97d54f74d3fdeb83788cc4b01f4c6a2a

[Third Party Advisory] https://security-tracker.debian.org/tracker/CVE-2011-1489

Scores

CVSS v3 5.5

EPSS 0.0015

EPSS Percentile 35.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-772

Status published

Affected Products (5)

rsyslog/rsyslog < 5.7.6

opensuse/opensuse

debian/debian_linux

debian/debian_linux

debian/debian_linux

Timeline

Published Nov 14, 2019

Tracked Since Feb 18, 2026