Tuesday, November 29th, 2011
This release provides support for “trusted properties”, which may enhance overall system security. This is a new concept and feedback on it is appreciated. For more details on trusted properties, please visit
http://www.rsyslog.com/what-are-trusted-properties/
or Rainer’s blog post with some more background about trusted properties:
http://blog.gerhards.net/2011/11/trusted-properties-in-rsyslog.html
In addition to this feature, we have reduced dependency on libgcrypt and fixed some bugs.
ChangeLog:
http://www.rsyslog.com/changelog-for-5-9-4-v5-devel/
Download:
http://www.rsyslog.com/rsyslog-5-9-4-devel/
As always, feedback is appreciated.
Best regards,
Florian Riedl
Tags: 5.9.4, devel, imuxsock, omfile, release, rsyslog, v5
Posted in News, Release Announcement | No Comments »
Tuesday, November 29th, 2011
Version 5.9.4 [V5-DEVEL], 2011-11-29
- imuxsock: added capability to “annotate” messages with “trusted information”, which contains some properties obtained from the system and as such is sure to not be faked. This is inspired by the similiar idea introduced in systemd. removed dependency on gcrypt for recently-enough GnuTLS
see: http://bugzilla.adiscon.com/show_bug.cgi?id=289
- bugfix: imuxsock did no longer ignore message-provided timestamp, if so configured (the *default*). Lead to no longer sub-second timestamps.
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=281
- bugfix: omfile returns fatal error code for things that go really wrong previously, RS_RET_RESUME was returned, which lead to a loop inside the rule engine as omfile could not really recover.
- bugfix: rsyslogd -v always said 64 atomics were not present
thanks to mono_matsuko for the patch
Tags: 5.9.4, annotate, Changelog, devel, imuxsock, omfile, rsyslog, v5
Posted in Changelog | No Comments »
Monday, September 19th, 2011
We have just released a new development version of rsyslog v6. This is primarily a maintenance release fixing a really annoying problem with reading the config file.
ChangeLog:
http://www.rsyslog.com/changelog-for-6-3-6-v6-devel/
Download:
http://www.rsyslog.com/rsyslog-6-3-6-v6-devel/
As always, feedback is appreciated.
Best regards,
Florian Riedl
Tags: 6.3.6, bugfix, config file, devel, maintenance, release, rsyslog, v6
Posted in News, Release Announcement | No Comments »
Monday, September 19th, 2011
Version 6.3.6 [DEVEL] 2011-09-19
- added $InputRELPServerBindRuleset directive to specify rulesets for RELP
- bugfix: config parser did not support properties with dashes in them inside property-based filters. Thanks to Gerrit Seré for reporting this.
Tags: 6.3.6, bugfix, Changelog, config parser, devel, RELP, rsyslog, v6
Posted in Changelog | 1 Comment »
Thursday, September 1st, 2011
Hi all,
There has a security issue been identified that can potentially lead to DoS. It is triggered by malformed RFC3164 messages. An abort only happens under very specific environmental trigger factors. Full details can be found in our security advisory here:
http://www.rsyslog.com/potential-dos-with-malformed-tag/
We would like to thank the Red Hat security team for finding this issue and working with us to resolve it.
As a consequence, we have updated all currently active versions. Please note that they do not only contain the fix for the security issue mentioned above but also other stability updates. For obvious reasons, updating to these versions is recommended. For details, please see the relevant ChangeLog.
- v4-stable: 4.6.8
- v4-beta: 4.7.5
- v5-stable: 5.8.5
- v5-devel: 5.9.3
- v6-beta: 6.1.12
- v6-devel: 6.3.5
All versions are available right now. If you do not want to update, you should consider applying an update to older versions. The fix is trivial, so it should apply to all vulnerable versions without problems (but we have not checked the myriad of versions out there). The security advisory contains the details.
The Changelogs and Download Links can be found below:
As always, feedback is appreciated.
Best regards,
Florian Riedl
Tags: 4.6.8, 4.7.5, 5.8.5, 5.9.3, 6.1.12, 6.3.5, beta, bugfix, devel, release, rsyslog, stable, v4, v5, v6
Posted in News, Release Announcement | No Comments »
Thursday, September 1st, 2011
Version 6.3.5 [DEVEL] (rgerhards/al), 2011-09-01
- bugfix/security: off-by-two bug in legacy syslog parser, CVE-2011-3200
- bugfix: mark message processing did not work correctly
- imudp&imtcp now report error if no listener at all was defined
Thanks to Marcin for suggesting this error message.
- bugfix: potential misadressing in property replacer
Tags: 6.3.5, bugfix, Changelog, devel, rsyslog, v6
Posted in Changelog | No Comments »
Thursday, September 1st, 2011
Version 5.9.3 [V5-DEVEL], 2011-09-01
- bugfix/security: off-by-two bug in legacy syslog parser, CVE-2011-3200
- bugfix: mark message processing did not work correctly
- added capability to emit config error location info for warnings otherwise, omusrmsg’s warning about new config format was not accompanied by problem location.
- bugfix: potential misadressing in property replacer
- bugfix: MSGID corruption in RFC5424 parser under some circumstances
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=275
- bugfix: The NUL-Byte for the syslogtag was not copied in MsgDup (msg.c)
Tags: 5.9.3, bugfix, Changelog, devel, rsyslog, v5
Posted in Changelog | No Comments »
