librelp 0.1.1
librelp 0.1.1 [download]: minor feature update
librelp 0.1.0
librelp 0.1.0 [download]: initial release
bug fixed in listener
There was a bug in the BEEP listeners which made them ignore the listen port set by srAPISetOption. The BEEP listeners always listen to 601, no matter what was set. This has today been fixed. The fix is currently available via anonymous CVS from sourceforge, only. Check there if you need this functionality.
LibLogging 0.6.0 released
After a very long time, LibLogging 0.6.0 has been released today. This version is not as stable as 0.5.0, but it includes the COOKED listener as its most important feature (but please note that it currently does not support COOKED relay operations or is scheduled to do that in the near future).
SQL Injection Vulnerability in rsyslogd
An SQL injection vulnerability was found in all rsyslog releases prior to the ones announced on 2005-09-23. An attacker can send a specifically-crafted syslog message to rsyslogd and potentially take ownership of the machine.
This can be locally exploited if rsyslogd is listening on the local socket. Wes assume it is doing this in almost all cases. It can also be exploited remotely if rsyslogd is listening on network sockets and the attacker is not blocked from sending messages to rsyslogd (e.g. if not blocked by firewalling).
The vulnerability can potentially be used to take full ownership of the computer a compromised rsyslog is running on. The extend of the compromise is depending on the permissions of the user used to connect to MySQL.
We do not know of any case where this was exploited in practice. The bug was discovered during security-testing rsyslogd.
As of this writing, fixed versions exist both for the stable and the development branch. They are named 1.0.1 and 1.10.1. They can be obtained via the following links:
For 1.0.1 stable:
http://www.rsyslog.com/Downloads-index-req-getit-lid-17.phtml
For 1.10.1 development:
http://www.rsyslog.com/Downloads-index-req-getit-lid-18.phtml
As this is a serious vulnerability, we urge all users to update to the fixed version as soon as possible.
If you have turned on NO_BACKSLASH_ESCAPES in MySQL, you MUST make changes to your configuration file. Read DETAILS below to learn more. Continue reading “SQL Injection Vulnerability in rsyslogd”
LibLogging is alive!
You may wonder… no news during the past month. Is LibLogging abandoned? Well, it looks like it is … but that’s not the truth. Of course, development on LibLogging has stopped, a fact caused by the simple matter of lack of interest in the library. However, there is growing interest since spring of this year and that interest will soon spawn some new development in LibLogging. There is a co-project, called rsyslog which implements a reliable syslog server, soon together with LibLogging. This project will hopefully create some additional awareness for RFC 3195 like logging. So, don’t panic, LibLogging is still very vital alive, it was just resting a little bit. I expect some more updates coming within the next 3 month (there are already some new features in the CVS version).
Future Milestones
The exact order of future development has not yet been decided, but it is likely that it will be close in the way the topics are ordered in this list:
. . . . . . . .
liblogging 0.5.0 is now available
It comes with the addition of a client-side COOKED profile (not yet on the server side) as well as a full-blown message object.
Moved the instable source (currently pre-0.4.0) to SourceForge.Net
(else use the ZIP archives).
liblogging 0.3.1 is now available
This version is the first one to include support for building servers (listeners). Please note that there is NO 0.3.0 version – this number was eaten up by an incomplete copy passed on to some limited folks. . . . . . . . .