Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

pmdb2diag : Out of bounds issue #3875

Merged
merged 1 commit into from Sep 30, 2019
Merged

pmdb2diag : Out of bounds issue #3875

merged 1 commit into from Sep 30, 2019

Conversation

pduveau
Copy link
Contributor

@pduveau pduveau commented Sep 24, 2019

Add a new sanity check after determining the level len.

Add a new sanity check after determining the level len.
@pduveau pduveau closed this Sep 24, 2019
@pduveau pduveau changed the title Out of bounds issue pmdb2diag : Out of bounds issue Sep 24, 2019
@pduveau pduveau reopened this Sep 24, 2019
@rgerhards rgerhards added this to the v8.1910 milestone Sep 30, 2019
@rgerhards rgerhards added the bug label Sep 30, 2019
@rgerhards
Copy link
Member

CI fail is false positve.

@rgerhards rgerhards merged commit 03efebf into rsyslog:master Sep 30, 2019
@abergmann
Copy link

CVE-2019-17040 was assigned to this issue.

kraj pushed a commit to YoeDistro/meta-openembedded that referenced this pull request Oct 12, 2019
Upgrade to latest version for CVE-2019-17040 fix plus
other upstream bug fixes.

[GitHub Issue] -- rsyslog/rsyslog#3875

CVE: CVE-2019-17040
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
kraj pushed a commit to YoeDistro/meta-openembedded that referenced this pull request Oct 25, 2019
Upgrade to latest version for CVE-2019-17040 fix plus
other upstream bug fixes.

[GitHub Issue] -- rsyslog/rsyslog#3875

CVE: CVE-2019-17040
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
@lock
Copy link

lock bot commented Dec 24, 2019

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

@lock lock bot locked as resolved and limited conversation to collaborators Dec 24, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

3 participants