RHSA-2011:0324-01 -- Redhat logwatchID: oval:org.secpod.oval:def:500242 | Date: (C)2012-01-31 (M)2023-02-20 |
Class: PATCH | Family: unix |
Logwatch is a customizable log analysis system. Logwatch parses through your system"s logs for a given period of time and creates a report analyzing areas that you specify, in as much detail as you require. A flaw was found in the way Logwatch processed log files. If an attacker were able to create a log file with a malicious file name, it could result in arbitrary code execution with the privileges of the root user when that log file is analyzed by Logwatch. Users of logwatch should upgrade to this updated package, which contains a backported patch to resolve this issue.
Platform: |
Red Hat Enterprise Linux 6 |
Red Hat Enterprise Linux 5 |