Vulnerability Note VU#249579
klogd does not adequately handle NULL byte when parsing text using LogLine( )
This vulnerability causes klogd to go into an infinite loop, thus preventing further kernel log messages from being written to disk.
Upgrade to latest version of klogd for your Linux distribution.
The following workaround is taken from http://bugs.debian.org/cgi-bin/bugreport.cgi?archive=no&bug=85478:
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Debian||Affected||10 Feb 2001||20 Jul 2001|
|Immunix||Affected||10 Feb 2001||20 Jul 2001|
CVSS Metrics (Learn More)
This vulnerability was discovered by Thomas Roessler <firstname.lastname@example.org> and was reported to the bugs.debian.org mailing list on February 10, 2001.
This document was written by Ian A. Finlay
- CVE IDs: CVE-2001-0738
- Date Public: 10 Feb 2001
- Date First Published: 24 Jul 2001
- Date Last Updated: 09 Apr 2003
- Severity Metric: 1.83
- Document Revision: 51
If you have feedback, comments, or additional information about this vulnerability, please send us email.