Search for packages
Package details: pkg:deb/debian/syslog-ng@4.8.1-5
purl pkg:deb/debian/syslog-ng@4.8.1-5
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-hdcc-cab9-x3eu syslog-ng is an enhanced log daemo. Prior to version 4.8.2, `tls_wildcard_match()` matches on certificates such as `foo.*.bar` although that is not allowed. It is also possible to pass partial wildcards such as `foo.a*c.bar` which glib matches but should be avoided / invalidated. This issue could have an impact on TLS connections, such as in man-in-the-middle situations. Version 4.8.2 contains a fix for the issue. CVE-2024-47619

Date Actor Action Vulnerability Source VulnerableCode Version
2025-08-01T12:44:36.674682+00:00 Debian Importer Fixing VCID-hdcc-cab9-x3eu https://security-tracker.debian.org/tracker/data/json 37.0.0