CVE-2011-1488

Name of the Vulnerable Software and Affected Versions rsyslog versions prior to 5.7.6

Description A memory leak was found in the way the rsyslog daemon processes log messages when $RepeatedMsgReduction is enabled. This issue could be exploited by a local attacker to cause a denial of the rsyslogd daemon service by crashing it via a sequence of repeated log messages sent within short periods of time.

Recommendations For versions prior to 5.7.6, update to version 5.7.6 or later to resolve the issue. As a temporary workaround, consider disabling the $RepeatedMsgReduction feature until a patch is available.