Search for packages
| purl | pkg:deb/debian/syslog-ng@3.38.1-5%2Bdeb12u1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1xzy-xag3-5ybt | syslog-ng is an enhanced log daemo. Prior to version 4.8.2, `tls_wildcard_match()` matches on certificates such as `foo.*.bar` although that is not allowed. It is also possible to pass partial wildcards such as `foo.a*c.bar` which glib matches but should be avoided / invalidated. This issue could have an impact on TLS connections, such as in man-in-the-middle situations. Version 4.8.2 contains a fix for the issue. |
CVE-2024-47619
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-15T17:49:17.512309+00:00 | Debian Oval Importer | Fixing | VCID-1xzy-xag3-5ybt | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 38.4.0 |
| 2026-04-11T17:35:10.642000+00:00 | Debian Oval Importer | Fixing | VCID-1xzy-xag3-5ybt | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 38.3.0 |
| 2026-04-08T17:22:54.344002+00:00 | Debian Oval Importer | Fixing | VCID-1xzy-xag3-5ybt | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 38.1.0 |