suse · CVE-2014-3634

Quick triage

Priority: high Published: 2021-05-30 13:21:20 UTC Updated: 2026-04-18 18:38:40 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2014-3634 severity important: SUSE including 148 source package names (klogd-1.4.1-786.3, klogd-1.4.1-lp150.2.4, …), 397 product×package rows across 44 product lines (HPE Helion OpenStack 8, SUSE Liberty Linux 7, … (44 product lines)): Fixed 227, Known Not Affected 170.

Description:

rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact via a crafted priority (PRI) value that triggers an out-of-bounds array access.

cvelogic Threat Intelligence