Search for packages
Package details: pkg:deb/debian/syslog-ng@4.8.1-5
purl pkg:deb/debian/syslog-ng@4.8.1-5
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-53pp-6csu-3uap syslog-ng is an enhanced log daemo. Prior to version 4.8.2, `tls_wildcard_match()` matches on certificates such as `foo.*.bar` although that is not allowed. It is also possible to pass partial wildcards such as `foo.a*c.bar` which glib matches but should be avoided / invalidated. This issue could have an impact on TLS connections, such as in man-in-the-middle situations. Version 4.8.2 contains a fix for the issue. CVE-2024-47619

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-22T04:25:07.819076+00:00 Debian Importer Fixing VCID-53pp-6csu-3uap https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-01T13:20:45.213137+00:00 Debian Importer Fixing VCID-53pp-6csu-3uap https://security-tracker.debian.org/tracker/data/json 36.0.0