Author: Rainer Gerhards

librelp stack buffer overflow vulnerability (CVE-2018-1000140)

On Monday March 19th, 2018, the librelp development team was informed by the security team at lgtm.com (Semmle) about a critical security vulnerability in librelp. The vulnerability is a long-standing bug that exists since version 1.1.1 (2013-06-11). It affects the client certificate validation in TLS mode which can lead to a stack buffer overrun and […]

librelp 1.2.15

librelp 1.2.15 [download]This new release of librelp provides several bugfixes and can be built on Solaris and AIX.For more details, please take a look at the changelog below. ———————————————————————- – made build on Solaris again– made build on AIX  Thanks to Philippe Duveau for providing the patches– bugfix: invalid handling of snprintf() return code– bugfix: […]

New Logo Selected

The rsyslog community selected a new logo! The winner is logo 1, also shown here to the right. That logo won with an overwhelming majority, and lead the polls on the mailing list, our original logo selection post as well as a dedicated poll we created for easier and anonymous voting. The logo was originally contributed […]

librelp 1.2.14

librelp 1.2.14 [download]This new release of librelp provides an API extension: add relpSrvSetMaxDataSize().For more details, please take a look at the changelog below. ———————————————————————- Version 1.2.14 – 2017-05-29– API extension: add relpSrvSetMaxDataSize()  Thanks to Nathan Brown for the patch. sha256sum: 11f6241a4336358a33bfdadd43ef299e8258db0a5243d0c164499c6b85ae5955 

LibLogging 1.0.6 released

liblogging 1.0.6 [download]We have released liblogging 1.0.6. This release mostly provides fixes for different issues, like a small memory leak, build detection for journal libraries and many more. For full details, see the changelog below. sha256sum: 338c6174e5c8652eaa34f956be3451f7491a4416ab489aef63151f802b00bf93 —————————————————————————- v1.0.6 2017-03-06– fix small memory leaks in libstdlog  each open/close leaked a couple of bytes; this was […]

librelp 1.2.13

librelp 1.2.13 [download] This new release of librelp provides only a few changes and cleanups.The biggest change is that librelp now builds on BSD. For more details, please take a look at the changelog below. ———————————————————————- Version 1.2.13 – 2017-02-20 – make build under BSD – bugfix: duplicated lines after server reconnect   Thanks to […]

librelp 1.2.12

librelp 1.2.12 [download] This new release of librelp provides a few changes and cleanups. It provides an API enhancement to permit to set a connection timeout and it has some dynamic tests added to allow the use of rsyslog to test librelp. For more details, please take a look at the changelog below. ———————————————————————- Version […]

librelp 1.2.11

librelp 1.2.11 [download] This new release of librelp is mostly a bugfixing release that fixes several issues, especially a potential segfault. The new version also has an API enhancement that adds a configurable connection timeout. For more details, please take a look at the changelog below. ———————————————————————- Version 1.2.11 – 2016-06-22 – bugfix: do not […]

librelp 1.2.10

librelp 1.2.10 [download]This new release of librelp fixes a problem with sending large buffers, improves sender/receiver code and enables compatibility with older versions of GnuTLS. ———————————————————————- Version 1.2.10 – 2016-03-30– make compatible with older versions of GnuTLS which require  libgcrypt– improve example sender/receiver code  Thanks to Chris Pilkington for the patches.– bugfix: Send full buffers […]

Scroll to top