update for rsyslog
- Fixed remote PRI DoS vulnerability patch (CVE-2014-3683,bnc#899756)
[* rsyslog-7.2.7-remote-PRI-DoS-fix-backport_CVE-2014-3634.patch]
- Removed broken, unsupported and dropped by upstream zpipe utility
from rsyslog-diag-tools package (bnc#890228)
- Remote syslog PRI DoS vulnerability fix (CVE-2014-3634,bnc#897262)
[+ rsyslog-7.2.7-remote-PRI-DoS-fix-backport_CVE-2014-3634.patch]
-
Submitted by
Marius Tomaschewski (mtomaschewski)
Fixed bugs
bnc#897262
CVE-2014-3634: rsyslog/syslogd: remote syslog PRI vulnerability
bnc#899756
CVE-2014-3683: rsyslog/syslogd: remote syslog PRI vulnerability - incomplete fix for CVE-2014-3634
bnc#890228
zpipe decompression infinitely repeats first 16K of output
