Issued:
2011-12-06
Updated:
2011-12-06

RHBA-2011:1673 - Bug Fix Advisory

Synopsis

rsyslog bug fix and enhancement update

Type/Severity

Bug Fix Advisory

Topic

Updated rsyslog packages that fix multiple bugs and add various enhancements are
now available for Red Hat Enterprise Linux 6.

Description

The rsyslog packages provide an enhanced, multi-threaded syslog daemon that
supports MySQL, syslog/TCP, RFC 3195, permitted sender list, filtering on any
message part, and fine grained output format control.

This updated fixes the following bugs:

  • Previously, running rsyslog with Transport Layer Security (TLS) and TCP caused
    extensive memory and CPU consumption. Consequent to this, the system could
    become unresponsive. The source code has been modified and problems with the
    memory and CPU consumption no longer occur. (BZ#661858)
  • Prior to this update, the rsyslog initscript created an invalid lock file
    named rsyslogd. As a consequence, rsyslog and rsyslogd did not match and the rc
    daemon did not stop the process when shutting down the system. With this update,
    the source code is modified so that the initscript creates a valid lock file.
    (BZ#698705)
  • On the IBM System z and PowerPC architectures, the rsyslog daemon did not
    respect the configuration to send messages using TLS encryption. As a
    consequence, messages were sent as plain text. With this update, rsyslog is
    modified to send messages encrypted. (BZ#701782)
  • Previously, the "ActionExecOnlyOnceEveryInterval" directive did not work as
    expected. If another message came within the time limit, the timeout got reset
    and would never expire. This problem has been fixed and the timeout now expires
    as expected. (BZ#727208)

This update also adds the following enhancements:

  • Previously, rsyslog did not build the omsnmp module by default. This update
    provides the omsnmp module so that users are able to send syslog messages over
    Simple Network Management Protocol (SNMP). (BZ#618488)
  • Previously, the rsyslog daemon included /var/log/boot.log in the
    /etc/logrotate.d/syslog file. The rotation caused a new boot.log file to be
    created with zero length, while a date was appended to the old one. Eventually,
    after a certain number of rotations, the boot.log data got lost. With this
    update, rotation is no longer used for /var/log/boot.log. (BZ#683537)
  • This update includes the new ommail module in the rsyslog package, which can
    be used for sending emails based on received syslog events. (BZ#702314)
  • This update introduces the new "SpaceLFOnReceive" configuration option and the
    "RSYSLOG_SysklogdFileFormat" format template. These new features allow users to
    configure rsyslog to behave like the sysklogd daemon, which was available in
    previous releases. (BZ#737096)

Users are advised to upgrade to these updated rsyslog packages, which fix these
bugs and add these enhancements.

Solution

Before applying this update, make sure all previously-released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Affected Products

  • Red Hat Enterprise Linux Server 6 x86_64
  • Red Hat Enterprise Linux Server 6 i386
  • Red Hat Enterprise Linux Workstation 6 x86_64
  • Red Hat Enterprise Linux Workstation 6 i386
  • Red Hat Enterprise Linux Desktop 6 x86_64
  • Red Hat Enterprise Linux Desktop 6 i386
  • Red Hat Enterprise Linux for IBM z Systems 6 s390x
  • Red Hat Enterprise Linux for Power, big endian 6 ppc64
  • Red Hat Enterprise Linux for Scientific Computing 6 x86_64
  • Red Hat Enterprise Linux Server from RHUI 6 x86_64
  • Red Hat Enterprise Linux Server from RHUI 6 i386

Fixes

  • BZ - 661858 - [RHEL 6] Rsyslog with TLS enabled TCP logging eats CPU and memory
  • BZ - 683537 - [RFE] Do not use log rotation for /var/log/boot.log
  • BZ - 698705 - rsyslog creates invalid subsys lock file
  • BZ - 727208 - ActionExecOnlyOnceEveryInterval directive doesn't work as expected

CVEs

(none)

References

(none)

Red Hat Enterprise Linux Server 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
x86_64
rsyslog-4.6.2-12.el6.x86_64.rpm SHA-256: ca0f7b802767f654b218a93b77c6ac1e72a71e8c365f34eaa995cf3138758c92
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-gnutls-4.6.2-12.el6.x86_64.rpm SHA-256: df61df7483d6f7e06025f8ec6b075516ea8a9c8ba159ab023857450a83f2859d
rsyslog-gssapi-4.6.2-12.el6.x86_64.rpm SHA-256: 4499ff5c9f8ec94980c819edca0e228a156bc772f75691c42f11429f00ffeca7
rsyslog-mysql-4.6.2-12.el6.x86_64.rpm SHA-256: 133821bed44b0e6ff413c8f7381e22f3f092e959e282455ede9f4d2a514f9688
rsyslog-pgsql-4.6.2-12.el6.x86_64.rpm SHA-256: 7cb97e4c046d771d811ce0bfefedb5b1338cbcc89d39165356dc248d38007ea8
rsyslog-relp-4.6.2-12.el6.x86_64.rpm SHA-256: 2d325d3cdc9864aa60bd40968e91e3906055d0d0bfd97e7766495536a749e47d
rsyslog-snmp-4.6.2-12.el6.x86_64.rpm SHA-256: 5aabd6bdd1a617f1ec229f3bf8ec8398a7b2b7d41bb528a18ed9fc8b4aa29dd0
i386
rsyslog-4.6.2-12.el6.i686.rpm SHA-256: 27d051c31019458554823a0231aff8f8e1781b68b634de523fac35d787454eae
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-gnutls-4.6.2-12.el6.i686.rpm SHA-256: b4e8e285643421195a4d7a49a7e549ccb4852af0d2fe7183897007a64cec4de7
rsyslog-gssapi-4.6.2-12.el6.i686.rpm SHA-256: c1e75b1a9f6cc618c951c4baad163bcad953fe615d91f26e1ee217a95701e97c
rsyslog-mysql-4.6.2-12.el6.i686.rpm SHA-256: f8b0a191650b4502564f303af411f03e7789fb7d1af8b51be56315653f54ddd7
rsyslog-pgsql-4.6.2-12.el6.i686.rpm SHA-256: e9b2ee78d34bd1d351dffefaf9db42dbdf1bee17547aa25dd6d5bcfbfaf5463e
rsyslog-relp-4.6.2-12.el6.i686.rpm SHA-256: 60079e3ef48757ee52d49381f393601252d61779a7d45e969de93f65b4cf4638
rsyslog-snmp-4.6.2-12.el6.i686.rpm SHA-256: 2180a2a2b88b01ea81591ba08c00f7cb19e37153d43fe3813acd0009f7f8b58e

Red Hat Enterprise Linux Workstation 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
x86_64
rsyslog-4.6.2-12.el6.x86_64.rpm SHA-256: ca0f7b802767f654b218a93b77c6ac1e72a71e8c365f34eaa995cf3138758c92
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-gnutls-4.6.2-12.el6.x86_64.rpm SHA-256: df61df7483d6f7e06025f8ec6b075516ea8a9c8ba159ab023857450a83f2859d
rsyslog-gssapi-4.6.2-12.el6.x86_64.rpm SHA-256: 4499ff5c9f8ec94980c819edca0e228a156bc772f75691c42f11429f00ffeca7
rsyslog-mysql-4.6.2-12.el6.x86_64.rpm SHA-256: 133821bed44b0e6ff413c8f7381e22f3f092e959e282455ede9f4d2a514f9688
rsyslog-pgsql-4.6.2-12.el6.x86_64.rpm SHA-256: 7cb97e4c046d771d811ce0bfefedb5b1338cbcc89d39165356dc248d38007ea8
rsyslog-relp-4.6.2-12.el6.x86_64.rpm SHA-256: 2d325d3cdc9864aa60bd40968e91e3906055d0d0bfd97e7766495536a749e47d
rsyslog-snmp-4.6.2-12.el6.x86_64.rpm SHA-256: 5aabd6bdd1a617f1ec229f3bf8ec8398a7b2b7d41bb528a18ed9fc8b4aa29dd0
i386
rsyslog-4.6.2-12.el6.i686.rpm SHA-256: 27d051c31019458554823a0231aff8f8e1781b68b634de523fac35d787454eae
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-gnutls-4.6.2-12.el6.i686.rpm SHA-256: b4e8e285643421195a4d7a49a7e549ccb4852af0d2fe7183897007a64cec4de7
rsyslog-gssapi-4.6.2-12.el6.i686.rpm SHA-256: c1e75b1a9f6cc618c951c4baad163bcad953fe615d91f26e1ee217a95701e97c
rsyslog-mysql-4.6.2-12.el6.i686.rpm SHA-256: f8b0a191650b4502564f303af411f03e7789fb7d1af8b51be56315653f54ddd7
rsyslog-pgsql-4.6.2-12.el6.i686.rpm SHA-256: e9b2ee78d34bd1d351dffefaf9db42dbdf1bee17547aa25dd6d5bcfbfaf5463e
rsyslog-relp-4.6.2-12.el6.i686.rpm SHA-256: 60079e3ef48757ee52d49381f393601252d61779a7d45e969de93f65b4cf4638
rsyslog-snmp-4.6.2-12.el6.i686.rpm SHA-256: 2180a2a2b88b01ea81591ba08c00f7cb19e37153d43fe3813acd0009f7f8b58e

Red Hat Enterprise Linux Desktop 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
x86_64
rsyslog-4.6.2-12.el6.x86_64.rpm SHA-256: ca0f7b802767f654b218a93b77c6ac1e72a71e8c365f34eaa995cf3138758c92
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-gnutls-4.6.2-12.el6.x86_64.rpm SHA-256: df61df7483d6f7e06025f8ec6b075516ea8a9c8ba159ab023857450a83f2859d
rsyslog-gssapi-4.6.2-12.el6.x86_64.rpm SHA-256: 4499ff5c9f8ec94980c819edca0e228a156bc772f75691c42f11429f00ffeca7
rsyslog-mysql-4.6.2-12.el6.x86_64.rpm SHA-256: 133821bed44b0e6ff413c8f7381e22f3f092e959e282455ede9f4d2a514f9688
rsyslog-pgsql-4.6.2-12.el6.x86_64.rpm SHA-256: 7cb97e4c046d771d811ce0bfefedb5b1338cbcc89d39165356dc248d38007ea8
rsyslog-relp-4.6.2-12.el6.x86_64.rpm SHA-256: 2d325d3cdc9864aa60bd40968e91e3906055d0d0bfd97e7766495536a749e47d
rsyslog-snmp-4.6.2-12.el6.x86_64.rpm SHA-256: 5aabd6bdd1a617f1ec229f3bf8ec8398a7b2b7d41bb528a18ed9fc8b4aa29dd0
i386
rsyslog-4.6.2-12.el6.i686.rpm SHA-256: 27d051c31019458554823a0231aff8f8e1781b68b634de523fac35d787454eae
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-gnutls-4.6.2-12.el6.i686.rpm SHA-256: b4e8e285643421195a4d7a49a7e549ccb4852af0d2fe7183897007a64cec4de7
rsyslog-gssapi-4.6.2-12.el6.i686.rpm SHA-256: c1e75b1a9f6cc618c951c4baad163bcad953fe615d91f26e1ee217a95701e97c
rsyslog-mysql-4.6.2-12.el6.i686.rpm SHA-256: f8b0a191650b4502564f303af411f03e7789fb7d1af8b51be56315653f54ddd7
rsyslog-pgsql-4.6.2-12.el6.i686.rpm SHA-256: e9b2ee78d34bd1d351dffefaf9db42dbdf1bee17547aa25dd6d5bcfbfaf5463e
rsyslog-relp-4.6.2-12.el6.i686.rpm SHA-256: 60079e3ef48757ee52d49381f393601252d61779a7d45e969de93f65b4cf4638
rsyslog-snmp-4.6.2-12.el6.i686.rpm SHA-256: 2180a2a2b88b01ea81591ba08c00f7cb19e37153d43fe3813acd0009f7f8b58e

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
s390x
rsyslog-4.6.2-12.el6.s390x.rpm SHA-256: 0e903e6ddfc084e1e58d6f45f709b89586dad5fd50fa18bd5fee063154446f85
rsyslog-debuginfo-4.6.2-12.el6.s390x.rpm SHA-256: 1f9850918329ba414a7c6d6415513e6907f26c1158eaf27a0cd5071820fcca78
rsyslog-debuginfo-4.6.2-12.el6.s390x.rpm SHA-256: 1f9850918329ba414a7c6d6415513e6907f26c1158eaf27a0cd5071820fcca78
rsyslog-gnutls-4.6.2-12.el6.s390x.rpm SHA-256: 04f716bbd0378c8c383a281049310e6a2a4944236a220e7f2554a9973db74f03
rsyslog-gssapi-4.6.2-12.el6.s390x.rpm SHA-256: f8533a70ad1867b456e8113c1ae9b94b37817e8b5919a82ee3b671f56fac156f
rsyslog-mysql-4.6.2-12.el6.s390x.rpm SHA-256: b37edd18154d631adbf0536cf6d5a5a1a327b6406ce30b97e6acccdc5dcf46e2
rsyslog-pgsql-4.6.2-12.el6.s390x.rpm SHA-256: daae69a570a2f57f0d744e4679d2eca9e9b828815dd0e7fc39663c0c2a586cc2
rsyslog-relp-4.6.2-12.el6.s390x.rpm SHA-256: 3ebfab402e30267f70f2e57ae97484f1e87a9f2c665ff88214ecb908f1e8028c
rsyslog-snmp-4.6.2-12.el6.s390x.rpm SHA-256: dc14f8afea168180208f399b2954be9c02d039e74d8119e664cd6da3300e2777

Red Hat Enterprise Linux for Power, big endian 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
ppc64
rsyslog-4.6.2-12.el6.ppc64.rpm SHA-256: 8371e8d464dd2a89b7efa2557f8e52a39c858236ce95e89b5f83f1493ddcf662
rsyslog-debuginfo-4.6.2-12.el6.ppc64.rpm SHA-256: 71448419a9893c61a98136136a6d3ddfa117a6cdf82ac210191c1428fb213e9d
rsyslog-debuginfo-4.6.2-12.el6.ppc64.rpm SHA-256: 71448419a9893c61a98136136a6d3ddfa117a6cdf82ac210191c1428fb213e9d
rsyslog-gnutls-4.6.2-12.el6.ppc64.rpm SHA-256: 1f11e016b1867df0aa3d6fc505b129ea54d802f7359c34b91ffba6ee23c42616
rsyslog-gssapi-4.6.2-12.el6.ppc64.rpm SHA-256: e5f5ed05ea496c93e390990a1afaf480176ede0c3ccf4880883e34df9af03b3b
rsyslog-mysql-4.6.2-12.el6.ppc64.rpm SHA-256: c795ba53a885811f67c50173ad248d44689dc4a9893163d824aea7ae697023eb
rsyslog-pgsql-4.6.2-12.el6.ppc64.rpm SHA-256: 2edda1a45b89273c2570e498d4302144daf0a1ecd2d85d767f4f9fb33554f4e1
rsyslog-relp-4.6.2-12.el6.ppc64.rpm SHA-256: 8e3e788136a27220cdd96ff8764d1be7078f972961da30bc12a4a85f9a80bde2
rsyslog-snmp-4.6.2-12.el6.ppc64.rpm SHA-256: a2a25cfab9c4cb9a6e0b5f50f793c766a4821b01041dad11f1cd100ee42ef05e

Red Hat Enterprise Linux for Scientific Computing 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
x86_64
rsyslog-4.6.2-12.el6.x86_64.rpm SHA-256: ca0f7b802767f654b218a93b77c6ac1e72a71e8c365f34eaa995cf3138758c92
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-gnutls-4.6.2-12.el6.x86_64.rpm SHA-256: df61df7483d6f7e06025f8ec6b075516ea8a9c8ba159ab023857450a83f2859d
rsyslog-gssapi-4.6.2-12.el6.x86_64.rpm SHA-256: 4499ff5c9f8ec94980c819edca0e228a156bc772f75691c42f11429f00ffeca7
rsyslog-mysql-4.6.2-12.el6.x86_64.rpm SHA-256: 133821bed44b0e6ff413c8f7381e22f3f092e959e282455ede9f4d2a514f9688
rsyslog-pgsql-4.6.2-12.el6.x86_64.rpm SHA-256: 7cb97e4c046d771d811ce0bfefedb5b1338cbcc89d39165356dc248d38007ea8
rsyslog-relp-4.6.2-12.el6.x86_64.rpm SHA-256: 2d325d3cdc9864aa60bd40968e91e3906055d0d0bfd97e7766495536a749e47d
rsyslog-snmp-4.6.2-12.el6.x86_64.rpm SHA-256: 5aabd6bdd1a617f1ec229f3bf8ec8398a7b2b7d41bb528a18ed9fc8b4aa29dd0

Red Hat Enterprise Linux Server from RHUI 6

SRPM
rsyslog-4.6.2-12.el6.src.rpm SHA-256: 11872fed6412f21331944a45487fdd8965627a945ebc92ea695d6507b0504c7c
x86_64
rsyslog-4.6.2-12.el6.x86_64.rpm SHA-256: ca0f7b802767f654b218a93b77c6ac1e72a71e8c365f34eaa995cf3138758c92
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-debuginfo-4.6.2-12.el6.x86_64.rpm SHA-256: 2f541db7c16f14fc41b4caa9fb46fbca23b7ff1fb7ac115a09e7c4883cd3afcc
rsyslog-gnutls-4.6.2-12.el6.x86_64.rpm SHA-256: df61df7483d6f7e06025f8ec6b075516ea8a9c8ba159ab023857450a83f2859d
rsyslog-gssapi-4.6.2-12.el6.x86_64.rpm SHA-256: 4499ff5c9f8ec94980c819edca0e228a156bc772f75691c42f11429f00ffeca7
rsyslog-mysql-4.6.2-12.el6.x86_64.rpm SHA-256: 133821bed44b0e6ff413c8f7381e22f3f092e959e282455ede9f4d2a514f9688
rsyslog-pgsql-4.6.2-12.el6.x86_64.rpm SHA-256: 7cb97e4c046d771d811ce0bfefedb5b1338cbcc89d39165356dc248d38007ea8
rsyslog-relp-4.6.2-12.el6.x86_64.rpm SHA-256: 2d325d3cdc9864aa60bd40968e91e3906055d0d0bfd97e7766495536a749e47d
rsyslog-snmp-4.6.2-12.el6.x86_64.rpm SHA-256: 5aabd6bdd1a617f1ec229f3bf8ec8398a7b2b7d41bb528a18ed9fc8b4aa29dd0
i386
rsyslog-4.6.2-12.el6.i686.rpm SHA-256: 27d051c31019458554823a0231aff8f8e1781b68b634de523fac35d787454eae
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-debuginfo-4.6.2-12.el6.i686.rpm SHA-256: 8403c7e4bdb8572d8b268918e0970ea481b6fddc69da1ed19a59ed9c0b1fb081
rsyslog-gnutls-4.6.2-12.el6.i686.rpm SHA-256: b4e8e285643421195a4d7a49a7e549ccb4852af0d2fe7183897007a64cec4de7
rsyslog-gssapi-4.6.2-12.el6.i686.rpm SHA-256: c1e75b1a9f6cc618c951c4baad163bcad953fe615d91f26e1ee217a95701e97c
rsyslog-mysql-4.6.2-12.el6.i686.rpm SHA-256: f8b0a191650b4502564f303af411f03e7789fb7d1af8b51be56315653f54ddd7
rsyslog-pgsql-4.6.2-12.el6.i686.rpm SHA-256: e9b2ee78d34bd1d351dffefaf9db42dbdf1bee17547aa25dd6d5bcfbfaf5463e
rsyslog-relp-4.6.2-12.el6.i686.rpm SHA-256: 60079e3ef48757ee52d49381f393601252d61779a7d45e969de93f65b4cf4638
rsyslog-snmp-4.6.2-12.el6.i686.rpm SHA-256: 2180a2a2b88b01ea81591ba08c00f7cb19e37153d43fe3813acd0009f7f8b58e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.