Denial of Service Vulnerability in Logrotate Product by Mark Nelson
CVE-2011-1155

Currently unrated

Key Information:

Vendor: Gentoo
Status: Logrotate
Vendor: CVE Published:; 30 March 2011

What is CVE-2011-1155?

The Logrotate product, specifically version 3.7.9 and earlier, contains a vulnerability in the writeState function within logrotate.c. This flaw allows attackers to trigger a denial of service condition by crafting malicious log filenames that include newline or backslash characters. This exploit can result in a rotation outage, disrupting normal log processing operations. Attackers may leverage these file names, which are often generated based on hostnames or virtual machine names, to achieve their objectives. Users and system administrators should implement appropriate safeguards to prevent such attacks and ensure the integrity of logging processes.

References

http://openwall.com/lists/oss-security/2011/03/04/19

mailing-listx_refsource_MLIST

http://openwall.com/lists/oss-security/2011/03/04/16

mailing-listx_refsource_MLIST

http://openwall.com/lists/oss-security/2011/03/04/25

mailing-listx_refsource_MLIST

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 30, 2011
Vulnerability Reserved
Mar 3, 2011

Gentoo

What is CVE-2011-1155?

References

Timeline