rsyslog 5.8.7 (v5-stable) released
This is a bug-fixing release. The most important patches resolve instabilities with RFC5424 header fields and information loss when non-wellformed messages are submitted to the system log socket.
ChangeLog:
http://www.rsyslog.com/changelog-for-5-8-7-v5-stable/
Download:
http://www.rsyslog.com/rsyslog-5-8-7-v5-stable/
As always, feedback is appreciated.
Best regards,
Tim Eifler
rsyslog 5.8.7 (v5-stable)
Download file name: rsyslog 5.8.7 (stable)
rsyslog 5.8.7 (stable)
md5sum: d806a91de534d6e33d7d1c1138cfdd37
Author: Rainer Gerhards (rgerhards@adiscon.com)
Version: 5.8.7 File size: 2.383 MB
Changelog for 5.8.7 (v5-stable)
Version 5.8.7 [V5-stable] 2012-01-17
- bugfix: instabilities when using RFC5424 header fields
Thanks to Kaiwang Chen for the patch - bugfix: imuxsock did truncate part of received message if it did not contain a proper date. The truncation occured because we removed that part of the messages that was expected to be the date.
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=295 - bugfix: potential abort after reading invalid X.509 certificate
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=290
Thanks to Tomas Heinrich for the patch - bugfix: stats counter were not properly initialized on creation FQDN hostname for multihomed host was not always set to the correct name if multiple aliases existed. Thanks to Tomas Heinreich for the patch.
rsyslog 5.9.4 (v5-devel)
Download file name: rsyslog 5.9.4 (devel)
rsyslog 5.9.4 (devel)
md5sum: 408f59536a10f34a73e3af000ca81639
Author: Rainer Gerhards (rgerhards@adiscon.com)
Version: 5.9.4 File size: 2.382 MB
rsyslog 5.9.4 (devel) released
This release provides support for “trusted properties”, which may enhance overall system security. This is a new concept and feedback on it is appreciated. For more details on trusted properties, please visit
http://www.rsyslog.com/what-are-trusted-properties/
or Rainer’s blog post with some more background about trusted properties:
http://blog.gerhards.net/2011/11/trusted-properties-in-rsyslog.html
In addition to this feature, we have reduced dependency on libgcrypt and fixed some bugs.
ChangeLog:
http://www.rsyslog.com/changelog-for-5-9-4-v5-devel/
Download:
http://www.rsyslog.com/rsyslog-5-9-4-devel/
As always, feedback is appreciated.
Best regards,
Florian Riedl
Changelog for 5.9.4 (v5-devel)
Version 5.9.4 [V5-DEVEL], 2011-11-29
- imuxsock: added capability to “annotate” messages with “trusted information”, which contains some properties obtained from the system and as such is sure to not be faked. This is inspired by the similiar idea introduced in systemd. removed dependency on gcrypt for recently-enough GnuTLS
see: http://bugzilla.adiscon.com/show_bug.cgi?id=289 - bugfix: imuxsock did no longer ignore message-provided timestamp, if so configured (the *default*). Lead to no longer sub-second timestamps.
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=281 - bugfix: omfile returns fatal error code for things that go really wrong previously, RS_RET_RESUME was returned, which lead to a loop inside the rule engine as omfile could not really recover.
- bugfix: rsyslogd -v always said 64 atomics were not present
thanks to mono_matsuko for the patch
rsyslog 5.8.6 (v5-stable)
Download file name: rsyslog 5.8.6 (stable)
rsyslog 5.8.6 (stable)
md5sum: c46db0496066b82faf735bd4222208d7
Author: Rainer Gerhards (rgerhards@adiscon.com)
Version: 5.8.6 File size: 2.373 MB
rsyslog 5.8.6 (v5-stable) released
This is a maintenance release offering bug fixes. For example for a small bug in property-based filter and a fix for $ActionExecOnlyOnce and more .For more detailed information, please read the changelog.
ChangeLog:
http://www.rsyslog.com/changelog-for-5-8-6-v5-stable/
Download:
http://www.rsyslog.com/rsyslog-5-8-6-v5-stable/
As always, feedback is appreciated.
Best regards,
Tim Eifler
Changelog for 5.8.6 (v5-stable)
Version 5.8.6 [V5-stable] 2011-10-21
- bugfix: missing whitespace after property-based filter was not detected
- bugfix: $OMFileFlushInterval period was doubled – now using correct value
- bugfix: ActionQueue could malfunction due to index error
Thanks to Vlad Grigorescu for the patch - bugfix: $ActionExecOnlyOnce interval did not work properly
Thanks to Tomas Heinrich for the patch - bugfix: race condition when extracting program name, APPNAME, structured data and PROCID (RFC5424 fields) could lead to invalid characters e.g. in dynamic file names or during forwarding (general malfunction of these fields in templates, mostly under heavy load)
- bugfix: imuxsock did no longer ignore message-provided timestamp, if so configured (the *default*). Lead to no longer sub-second timestamps.
closes: http://bugzilla.adiscon.com/show_bug.cgi?id=281 - bugfix: omfile returns fatal error code for things that go really wrong previously, RS_RET_RESUME was returned, which lead to a loop inside the rule engine as omfile could not really recover.
- bugfix: imfile did invalid system call under some circumstances when a file that was to be monitored did not exist BUT the state file actually existed. Mostly a cosmetic issue. Root cause was incomplete error checking in stream.c; so patch may affect other code areas.
- bugfix: rsyslogd -v always said 64 atomics were not present
Thanks to mono_matsuko for the patch
rsyslog multiple buxfixes released
Hi all,
There has a security issue been identified that can potentially lead to DoS. It is triggered by malformed RFC3164 messages. An abort only happens under very specific environmental trigger factors. Full details can be found in our security advisory here:
http://www.rsyslog.com/potential-dos-with-malformed-tag/
We would like to thank the Red Hat security team for finding this issue and working with us to resolve it.
As a consequence, we have updated all currently active versions. Please note that they do not only contain the fix for the security issue mentioned above but also other stability updates. For obvious reasons, updating to these versions is recommended. For details, please see the relevant ChangeLog.
- v4-stable: 4.6.8
- v4-beta: 4.7.5
- v5-stable: 5.8.5
- v5-devel: 5.9.3
- v6-beta: 6.1.12
- v6-devel: 6.3.5
All versions are available right now. If you do not want to update, you should consider applying an update to older versions. The fix is trivial, so it should apply to all vulnerable versions without problems (but we have not checked the myriad of versions out there). The security advisory contains the details.
The Changelogs and Download Links can be found below:
- v4-stable: 4.6.8
ChangeLog: http://www.rsyslog.com/changelog-for-4-6-8-v4-stable/
Download: http://www.rsyslog.com/rsyslog-4-6-8-v4-stable/
- v4-beta: 4.7.5
ChangeLog: http://www.rsyslog.com/changelog-for-4-7-5-v4-beta/
Download: http://www.rsyslog.com/rsyslog-4-7-5-v4-beta/ - v5-stable: 5.8.5
ChangeLog: http://www.rsyslog.com/changelog-for-5-8-5-v5-stable/
Download: http://www.rsyslog.com/rsyslog-5-8-5-v5-stable/ - v5-devel: 5.9.3
ChangeLog: http://www.rsyslog.com/changelog-for-5-9-3-v5-devel/
Download: http://www.rsyslog.com/rsyslog-5-9-3-v5-devel/ - v6-beta: 6.1.12
ChangeLog: http://www.rsyslog.com/changelog-for-6-1-12-v6-beta/
Download: http://www.rsyslog.com/rsyslog-6-1-12-v6-beta/ - v6-devel: 6.3.5
ChangeLog: http://www.rsyslog.com/changelog-for-6-3-5-v6-devel/
Download: http://www.rsyslog.com/rsyslog-6-3-5-v6-devel/
As always, feedback is appreciated.
Best regards,
Florian Riedl