CVE-2022-24903

06.05.2022, 00:15

Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used. This can result in a segfault or some other malfunction. As of our understanding, this vulnerability can not be used for remote code execution. But there may still be a slight chance for experts to do that. The bug occurs when the octet count is read. While there is a check for the maximum number of octets, digits are written to a heap buffer even when the octet count is over the maximum, This can be used to overrun the memory buffer. However, once the sequence of digits stop, no additional characters can be added to the buffer. In our opinion, this makes remote exploits impossible or at least highly complex. Octet-counted framing is one of two potential framing modes. It is relatively uncommon, but enabled by default on receivers. Modules `imtcp`, `imptcp`, `imgssapi`, and `imhttp` are used for regular syslog message reception. It is best practice not to directly expose them to the public. When this practice is followed, the risk is considerably lower. Module `imdiag` is a diagnostics module primarily intended for testbench runs. We do not expect it to be present on any production installation. Octet-counted framing is not very common. Usually, it needs to be specifically enabled at senders. If users do not need it, they can turn it off for the most important modules. This will mitigate the vulnerability.

Classic Buffer Overflow

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	8.1 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 66%

Affected Products (NVD)

Vendor	Product	Version
rsyslog	rsyslog	𝑥 < 8.2204.1
debian	debian_linux	9.0
debian	debian_linux	10.0
debian	debian_linux	11.0
netapp	active_iq_unified_manager	-

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rsyslog

bookworm	8.2302.0-1 fixed
bullseye	8.2102.0-2+deb11u1 fixed
bullseye (security)	8.2102.0-2+deb11u1 fixed
sid	8.2410.0-1 fixed
trixie	8.2410.0-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

rsyslog

bionic	Fixed 8.32.0-1ubuntu4.2 released
focal	Fixed 8.2001.0-1ubuntu1.3 released
impish	Fixed 8.2102.0-2ubuntu2.2 released
jammy	Fixed 8.2112.0-2ubuntu2.2 released
kinetic	Fixed 8.2204.0-1ubuntu1 released
lunar	Fixed 8.2204.0-1ubuntu1 released
mantic	Fixed 8.2204.0-1ubuntu1 released
noble	Fixed 8.2204.0-1ubuntu1 released
trusty	needs-triage
xenial	Fixed 8.16.0-1ubuntu3.1+esm2 released

openSUSE / SLES Releases

openSUSE Product

Release

rsyslog

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed

rsyslog-diag-tools

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed

rsyslog-doc

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed

rsyslog-module-gssapi

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-gtls

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-mmnormalize

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-mysql

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-pgsql

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-relp

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-snmp

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

rsyslog-module-udpspoof

suse enterprise sap 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise sap 15	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise sap 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise sap 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise sap 15 SP7	8.2406.0-150700.1.6 fixed
suse enterprise server 12 SP3	8.24.0-3.58.2 fixed
suse enterprise server 12 SP4	8.24.0-3.58.2 fixed
suse enterprise server 12 SP5	8.2106.0-8.5.2 fixed
suse enterprise server 15	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP1	8.33.1-150000.3.37.1 fixed
suse enterprise server 15 SP2	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP3	8.2106.0-150200.4.26.1 fixed
suse enterprise server 15 SP4	8.2106.0-150400.3.1 fixed
suse enterprise server 15 SP7	8.2406.0-150700.1.6 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

rsyslog

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-crypto

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-doc

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-elasticsearch

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-gnutls

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-gssapi

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-kafka

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-libdbi

RHEL 7

0:8.24.0-57.el7_9.3

fixed

rsyslog-logrotate

RHEL 9

0:8.2102.0-101.el9_0.1

fixed

rsyslog-mmaudit

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-mmfields

RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-mmjsonparse

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-mmkubernetes

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-mmnormalize

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-mmsnmptrapd

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-mysql

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-omamqp1

RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-openssl

RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-pgsql

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-relp

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-snmp

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.1 E4S	0:8.37.0-13.el8_1.1 fixed
RHEL 8.2 AUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 E4S	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 EUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.2 TUS	0:8.1911.0-3.el8_2.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

rsyslog-udpspoof

RHEL 7	0:8.24.0-57.el7_9.3 fixed
RHEL 8	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.4 AUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 E4S	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 EUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.4 TUS	0:8.1911.0-7.el8_4.3 fixed
RHEL 8.6 AUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 E4S	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 EUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 8.6 TUS	0:8.2102.0-7.el8_6.1 fixed
RHEL 9	0:8.2102.0-101.el9_0.1 fixed

Common Weakness Enumeration

References

https://github.com/rsyslog/rsyslog/commit/f211042ecbb472f9d8beb4678a65d272b6f07705

https://github.com/rsyslog/rsyslog/security/advisories/GHSA-ggw7-xr6h-mmr8

https://lists.debian.org/debian-lts-announce/2022/05/msg00028.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GMNNXLCU2UORRVSZO24HL4KMVPK5PHVW/

https://security.netapp.com/advisory/ntap-20221111-0002/

https://www.debian.org/security/2022/dsa-5150

https://github.com/rsyslog/rsyslog/commit/f211042ecbb472f9d8beb4678a65d272b6f07705

https://github.com/rsyslog/rsyslog/security/advisories/GHSA-ggw7-xr6h-mmr8

https://lists.debian.org/debian-lts-announce/2022/05/msg00028.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GMNNXLCU2UORRVSZO24HL4KMVPK5PHVW/

https://security.netapp.com/advisory/ntap-20221111-0002/

https://www.debian.org/security/2022/dsa-5150