Known Vulnerabilities for Syslog-ng by Oneidentity
Listed below are 6 of the newest known vulnerabilities associated with "Syslog-ng" by "Oneidentity".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-43361 json | In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort when snapshotting received ... | Not Provided | 2026-05-08 | 2026-05-11 |
| CVE-2026-43338 json | In the Linux kernel, the following vulnerability has been resolved: btrfs: reserve enough transaction items for qgroup ioctl... | Not Provided | 2026-05-08 | 2026-05-11 |
| CVE-2026-34478 json | Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.html#RFC5424Layout , in versions 2.21.... | Not Provided | 2026-04-10 | 2026-04-10 |
| CVE-2026-34477 json | The fix for CVE-2025-68161 https://logging.apache.org/security.html#CVE-2025-68161 was incomplete: it addressed hostname ve... | Not Provided | 2026-04-10 | 2026-04-10 |
| CVE-2024-50046 json | In the Linux kernel, the following vulnerability has been resolved: NFSv4: Prevent NULL-pointer dereference in nfs42_complet... | Not Provided | 2024-10-21 | 2026-05-12 |
| CVE-2023-6780 json | An integer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog ... | Not Provided | 2024-01-31 | 2026-05-12 |
| CVE-2023-6779 json | An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is ... | Not Provided | 2024-01-31 | 2026-05-12 |
| CVE-2023-6246 json | A heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by th... | Not Provided | 2024-01-31 | 2026-05-12 |
| CVE-2022-38725 json | An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denia... | 7.5 - HIGH | 2023-01-23 | 2023-11-07 |
| CVE-2020-8019 json | A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of syslog-ng of SUSE Linux Enterprise Debuginfo 11-SP... | 7.8 - HIGH | 2020-06-29 | 2020-07-09 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oneidentity | Syslog-ng | 3.9.1 | |||
| Application | Oneidentity | Syslog-ng | 3.8.1 | |||
| Application | Oneidentity | Syslog-ng | 3.8.0 | |||
| Application | Oneidentity | Syslog-ng | 3.8.0 | |||
| Application | Oneidentity | Syslog-ng | 3.7.3 | |||
| Application | Oneidentity | Syslog-ng | 3.7.2 | |||
| Application | Oneidentity | Syslog-ng | 3.7.1 | |||
| Application | Oneidentity | Syslog-ng | 3.7.0 | |||
| Application | Oneidentity | Syslog-ng | 3.7.0 | |||
| Application | Oneidentity | Syslog-ng | 3.7.0 | |||
| Application | Oneidentity | Syslog-ng | 3.7.0 | |||
| Application | Oneidentity | Syslog-ng | 3.6.4-12.8.1 | |||
| Application | Oneidentity | Syslog-ng | 3.6.4 | |||
| Application | Oneidentity | Syslog-ng | 3.6.3 | |||
| Application | Oneidentity | Syslog-ng | 3.6.2 | |||
| Application | Oneidentity | Syslog-ng | 3.6.1 | |||
| Application | Oneidentity | Syslog-ng | 3.6.0 | |||
| Application | Oneidentity | Syslog-ng | 3.6.0 | |||
| Application | Oneidentity | Syslog-ng | 3.6.0 | |||
| Application | Oneidentity | Syslog-ng | 3.6.0 |