Monday, January 9th, 2012
ChangeLog (from 6.1.12 to 6.2.0):
- bugfix (kind of): removed numerical part from pri-text see v6 compatibility document for reasons
- bugfix: race condition when extracting program name, APPNAME, structured data and PROCID (RFC5424 fields) could lead to invalid characters e.g. in dynamic file names or during forwarding (general malfunction of these fields in templates, mostly under heavy load)
- bugfix: imuxsock did no longer ignore message-provided timestamp, if so configured (the *default*). Lead to no longer sub-second timestamps.
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=281
- bugfix: omfile returns fatal error code for things that go really wrong previously, RS_RET_RESUME was returned, which lead to a loop inside the rule engine as omfile could not really recover.
- bugfix: rsyslogd -v always said 64 atomics were not present
thanks to mono_matsuko for the patch
- bugfix: potential abort after reading invalid X.509 certificate closes:
http://bugzilla.adiscon.com/show_bug.cgi?id=290
Thanks to Tomas Heinrich for the patch
- $Begin, $End, $StrictScoping directives have been removed as v6.4 will provide the same functionality in a far better way. So we do not want to clutter the code.
Tags: 6.2.0, bugfix, Changelog, rsyslog, stable, v6
Posted in Changelog | No Comments »
Monday, September 19th, 2011
We have just released a new development version of rsyslog v6. This is primarily a maintenance release fixing a really annoying problem with reading the config file.
ChangeLog:
http://www.rsyslog.com/changelog-for-6-3-6-v6-devel/
Download:
http://www.rsyslog.com/rsyslog-6-3-6-v6-devel/
As always, feedback is appreciated.
Best regards,
Florian Riedl
Tags: 6.3.6, bugfix, config file, devel, maintenance, release, rsyslog, v6
Posted in News, Release Announcement | No Comments »
Monday, September 19th, 2011
Version 6.3.6 [DEVEL] 2011-09-19
- added $InputRELPServerBindRuleset directive to specify rulesets for RELP
- bugfix: config parser did not support properties with dashes in them inside property-based filters. Thanks to Gerrit Seré for reporting this.
Tags: 6.3.6, bugfix, Changelog, config parser, devel, RELP, rsyslog, v6
Posted in Changelog | 1 Comment »
Thursday, September 1st, 2011
Hi all,
There has a security issue been identified that can potentially lead to DoS. It is triggered by malformed RFC3164 messages. An abort only happens under very specific environmental trigger factors. Full details can be found in our security advisory here:
http://www.rsyslog.com/potential-dos-with-malformed-tag/
We would like to thank the Red Hat security team for finding this issue and working with us to resolve it.
As a consequence, we have updated all currently active versions. Please note that they do not only contain the fix for the security issue mentioned above but also other stability updates. For obvious reasons, updating to these versions is recommended. For details, please see the relevant ChangeLog.
- v4-stable: 4.6.8
- v4-beta: 4.7.5
- v5-stable: 5.8.5
- v5-devel: 5.9.3
- v6-beta: 6.1.12
- v6-devel: 6.3.5
All versions are available right now. If you do not want to update, you should consider applying an update to older versions. The fix is trivial, so it should apply to all vulnerable versions without problems (but we have not checked the myriad of versions out there). The security advisory contains the details.
The Changelogs and Download Links can be found below:
As always, feedback is appreciated.
Best regards,
Florian Riedl
Tags: 4.6.8, 4.7.5, 5.8.5, 5.9.3, 6.1.12, 6.3.5, beta, bugfix, devel, release, rsyslog, stable, v4, v5, v6
Posted in News, Release Announcement | No Comments »
Thursday, September 1st, 2011
Version 6.3.5 [DEVEL] (rgerhards/al), 2011-09-01
- bugfix/security: off-by-two bug in legacy syslog parser, CVE-2011-3200
- bugfix: mark message processing did not work correctly
- imudp&imtcp now report error if no listener at all was defined
Thanks to Marcin for suggesting this error message.
- bugfix: potential misadressing in property replacer
Tags: 6.3.5, bugfix, Changelog, devel, rsyslog, v6
Posted in Changelog | No Comments »
Thursday, September 1st, 2011
Version 6.1.12 [BETA], 2011-09-01
- bugfix/security: off-by-two bug in legacy syslog parser, CVE-2011-3200
- bugfix: mark message processing did not work correctly
- bugfix: potential misadressing in property replacer
- bugfix: memcpy overflow can occur in allowed sender checkig if a name is resolved to IPv4-mapped-on-IPv6 address
Found by Ismail Dönmez at suse
- bugfix: The NUL-Byte for the syslogtag was not copied in MsgDup (msg.c)
- bugfix: fixed incorrect state handling for Discard Action (transactions)
Note: This caused all messages in a batch to be set to COMMITTED even if they were discarded.
Tags: 6.1.12, beta, bugfix, Changelog, rsyslog, v6
Posted in Changelog | No Comments »
