USN-1224-1: rsyslog vulnerability
3 October 2011
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 11.04
Rsyslog could be made to crash if it processed a specially crafted message.
- rsyslog - enhanced multi-threaded syslogd
It was discovered that rsyslog had an off-by-two error when parsing legacy syslog messages. An attacker could potentially exploit this to cause a denial of service via application crash.
The problem can be corrected by updating your system to the following package versions:
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system update will make all the necessary changes.