- Update to 7.4.2 [v7.4-stable] (bnc#828140,CVE-2013-4758):
- bugfix: in RFC5425 TLS, multiple wildcards in auth could cause
segfault
- bugfix: RainerScript object required parameters were not properly
checked - this clould result to segfaults on startup if parameters
were missing.
- bugfix: double-free in omelasticsearch
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=461
a security advisory for this bug is available at:
http://www.lsexperts.de/advisories/lse-2013-07-03.txt
PLEASE NOTE: This issue only existed if omelasticsearch was used
in a non-default configuration, where the "errorfile" parameter
was specified. Without that parameter set, the bug could not be
triggered. Thanks to Markus Vervier and Marius Ionescu for providing
a detailled bug report. Special thanks to Markus for coordinating
his security advisory with us.
- bugfix: omrelp potential segfault at startup on invalid config
parameters
- bugfix: small memory leak when $uptime property was used
- bugfix: potential segfault on rsyslog termination in imudp
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=456
- bugfix: lmsig_gt abort on invalid configuration parameters
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=448
Thanks to Risto Laanoja for the patch.
- imtcp: fix typo in "listner" parameter, which is "listener"
Currently, both names are accepted.
- solved build problems on FreeBSD
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=457
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=458
Thanks to Christiano for reproting and suggesting patches
- solved build problems on CENTOS5
OBS-URL: https://build.opensuse.org/request/show/182284
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/rsyslog?expand=0&rev=73
- bugfix: in RFC5425 TLS, multiple wildcards in auth could cause
segfault
- bugfix: RainerScript object required parameters were not properly
checked - this clould result to segfaults on startup if parameters
were missing.
- bugfix: double-free in omelasticsearch
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=461
a security advisory for this bug is available at:
http://www.lsexperts.de/advisories/lse-2013-07-03.txt
PLEASE NOTE: This issue only existed if omelasticsearch was used
in a non-default configuration, where the "errorfile" parameter
was specified. Without that parameter set, the bug could not be
triggered. Thanks to Markus Vervier and Marius Ionescu for providing
a detailled bug report. Special thanks to Markus for coordinating
his security advisory with us.
- bugfix: omrelp potential segfault at startup on invalid config
parameters
- bugfix: small memory leak when $uptime property was used
- bugfix: potential segfault on rsyslog termination in imudp
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=456
- bugfix: lmsig_gt abort on invalid configuration parameters
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=448
Thanks to Risto Laanoja for the patch.
- imtcp: fix typo in "listner" parameter, which is "listener"
Currently, both names are accepted.
- solved build problems on FreeBSD
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=457
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=458
Thanks to Christiano for reproting and suggesting patches
OBS-URL: https://build.opensuse.org/package/show/Base:System/rsyslog?expand=0&rev=156
- bugfix: some man pages were not properly installed either
rscryutil or rsgtutil man was installed, but not both.
Thanks to Marius Tomaschewski for the patch.
- bugfix: potential segfault on startup when builtin module was
specified in module() statement.
Thanks to Marius Tomaschewski for reporting the bug.
- bugfix: segfault due to invalid dynafile cache handling
Accidently, the old-style cache size parameter was used when the
dynafile cache was created in a RainerScript action. If the
old-style size was lower than the one actually set, this lead to
misadressing when the size was overrun, and that could lead to
all kinds of “interesting things”, often in segfaults.
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=440
OBS-URL: https://build.opensuse.org/package/show/Base:System/rsyslog?expand=0&rev=147
- Adopted config file to stop instead of deprecated "~" action.
- Enabled log file signing module lmsig_gt using GuardTime as
separate rsyslog-module-guardtime package.
- Moved previously enabled log file encryption module lmcry_gcry
and its utility into a separate rsyslog-module-gcrypt package.
- update to 7.3.13 [beta] 2013-04-29:
- update to 7.3.12 [devel] 2013-04-25:
- update to 7.3.11 [devel] 2013-04-23
- Enabled systemd imjournal,omjournal modules on > 12.3.
- Enabled mmanon, providing anonymization support
- Enabled lmcry_gcry.so, providing log file encryption support
and the rscryutil utility to manage the encrypted log files.
- Removed obsolete --enable-pthreads configure option.
OBS-URL: https://build.opensuse.org/request/show/173999
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/rsyslog?expand=0&rev=69