Vulnerability Description
syslog-ng is an enhanced log daemo. Prior to version 4.8.2, `tls_wildcard_match()` matches on certificates such as `foo.*.bar` although that is not allowed. It is also possible to pass partial wildcards such as `foo.a*c.bar` which glib matches but should be avoided / invalidated. This issue could have an impact on TLS connections, such as in man-in-the-middle situations. Version 4.8.2 contains a fix for the issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oneidentity | Syslog-Ng | < 4.8.2 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- https://github.com/syslog-ng/syslog-ng/blob/b0ccc8952d333fbc2d97e51fddc0b569a15eProduct
- https://github.com/syslog-ng/syslog-ng/commit/dadfdbecde5bfe710b0a6ee5699f96926bPatch
- https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-4.8.2Release Notes
- https://github.com/syslog-ng/syslog-ng/security/advisories/GHSA-xr54-gx74-fghgExploitVendor Advisory
- https://lists.debian.org/debian-lts-announce/2025/05/msg00034.htmlMailing ListThird Party Advisory
- https://github.com/syslog-ng/syslog-ng/security/advisories/GHSA-xr54-gx74-fghgExploitVendor Advisory
FAQ
What is CVE-2024-47619?
CVE-2024-47619 is a vulnerability with a CVSS score of 7.5 (HIGH). syslog-ng is an enhanced log daemo. Prior to version 4.8.2, `tls_wildcard_match()` matches on certificates such as `foo.*.bar` although that is not allowed. It is also possible to pass partial wildcar...
How severe is CVE-2024-47619?
CVE-2024-47619 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-47619?
Check the references section above for vendor advisories and patch information. Affected products include: Oneidentity Syslog-Ng, Debian Debian Linux.