Rsyslog · Rsyslog · CVE-2018-16881
Name of the Vulnerable Software and Affected Versions:
rsyslog versions prior to 8.27.0
Description:
The issue is related to an integer overflow in the imptcp module of the Rsyslog log processing utility. It allows a remote attacker to cause a denial of service. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash.
Recommendations:
For versions prior to 8.27.0, update to version 8.27.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the imptcp socket to minimize the risk of exploitation.