Nixpkgs security tracker

Untriaged

Permalink CVE-2011-1488

created 2 months ago Activity log

Created suggestion 2 months ago

A memory leak in rsyslog before 5.7.6 was found in …

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when $RepeatedMsgReduction was enabled. A local attacker could use this flaw to cause a denial of the rsyslogd daemon service by crashing the service via a sequence of repeated log messages sent within short periods of time.

References

https://security-tracker.debian.org/tracker/CVE-2011-1488 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1488 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-1488 x_transferredx_refsource_MISC
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html x_transferredx_refsource_MISC
https://github.com/rsyslog/rsyslog/commit/1ef709cc97d54f74d3fdeb83788cc4b01f4c6… x_transferredx_refsource_MISC

Affected products

rsyslog

==before 5.7.6

Matching in nixpkgs

pkgs.rsyslog

Enhanced syslog implementation

nixos-unstable 8.2512.0
- nixpkgs-unstable 8.2512.0
- nixos-unstable-small 8.2512.0
nixos-25.11 8.2510.0
- nixos-25.11-small 8.2510.0
- nixpkgs-25.11-darwin 8.2510.0

pkgs.rsyslog-light

Enhanced syslog implementation

nixos-unstable 8.2512.0
- nixpkgs-unstable 8.2512.0
- nixos-unstable-small 8.2512.0
nixos-25.11 8.2510.0
- nixos-25.11-small 8.2510.0
- nixpkgs-25.11-darwin 8.2510.0

Untriaged

Permalink CVE-2011-1490

created 2 months ago Activity log

Created suggestion 2 months ago

A memory leak in rsyslog before 5.7.6 was found in …

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages are logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service via a log message belonging to more than one ruleset

References

https://security-tracker.debian.org/tracker/CVE-2011-1490 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1490 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-1490 x_transferredx_refsource_MISC
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html x_transferredx_refsource_MISC
https://github.com/rsyslog/rsyslog/commit/1ef709cc97d54f74d3fdeb83788cc4b01f4c6… x_transferredx_refsource_MISC

Affected products

rsyslog

==before 5.7.6

Matching in nixpkgs

pkgs.rsyslog

Enhanced syslog implementation

nixos-unstable 8.2512.0
- nixpkgs-unstable 8.2512.0
- nixos-unstable-small 8.2512.0
nixos-25.11 8.2510.0
- nixos-25.11-small 8.2510.0
- nixpkgs-25.11-darwin 8.2510.0

pkgs.rsyslog-light

Enhanced syslog implementation

nixos-unstable 8.2512.0
- nixpkgs-unstable 8.2512.0
- nixos-unstable-small 8.2512.0
nixos-25.11 8.2510.0
- nixos-25.11-small 8.2510.0
- nixpkgs-25.11-darwin 8.2510.0

Untriaged

Permalink CVE-2011-1489

created 2 months ago Activity log

Created suggestion 2 months ago

A memory leak in rsyslog before 5.7.6 was found in …

A memory leak in rsyslog before 5.7.6 was found in the way deamon processed log messages were logged when multiple rulesets were used and some output batches contained messages belonging to more than one ruleset. A local attacker could cause denial of the rsyslogd daemon service via a log message belonging to more than one ruleset.

References

https://security-tracker.debian.org/tracker/CVE-2011-1489 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1489 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-1489 x_transferredx_refsource_MISC
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00005.html x_transferredx_refsource_MISC
https://github.com/rsyslog/rsyslog/commit/1ef709cc97d54f74d3fdeb83788cc4b01f4c6… x_transferredx_refsource_MISC

Affected products

rsyslog

==before 5.7.6

Matching in nixpkgs

pkgs.rsyslog

Enhanced syslog implementation

nixos-unstable 8.2512.0
- nixpkgs-unstable 8.2512.0
- nixos-unstable-small 8.2512.0
nixos-25.11 8.2510.0
- nixos-25.11-small 8.2510.0
- nixpkgs-25.11-darwin 8.2510.0

pkgs.rsyslog-light

Enhanced syslog implementation

nixos-unstable 8.2512.0
- nixpkgs-unstable 8.2512.0
- nixos-unstable-small 8.2512.0
nixos-25.11 8.2510.0
- nixos-25.11-small 8.2510.0
- nixpkgs-25.11-darwin 8.2510.0

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.rsyslog

pkgs.rsyslog-light

References

Affected products

Matching in nixpkgs

pkgs.rsyslog

pkgs.rsyslog-light

References

Affected products

Matching in nixpkgs

pkgs.rsyslog

pkgs.rsyslog-light