Fedora 10 Moderate Update: 2009-1737 Remote DoS in Fail2ban
fedora
February 14, 2009
This updates fixes CVE-2009-0362
Summary
Fail2ban scans log files like /var/log/pwdfail or
/var/log/apache/error_log and bans IP that makes too many password
failures. It updates firewall rules to reject the IP address.
This updates fixes CVE-2009-0362. See https://www.cve.org/CVERecord?id=CVE-2009-0362 for further details.
* Sat Feb 14 2009 Axel Thimm
- Fix CVE-2009-0362 (Fedora bugs #485461, #485464, #485465, #485466).
* Mon Dec 1 2008 Ignacio Vazquez-Abrams
- Rebuild for Python 2.6
[ 1 ] Bug #485461 - CVE-2009-0362 fail2ban: remote DoS via crafted domain names
https://bugzilla.redhat.com/show_bug.cgi?id=485461
su -c 'yum update fail2ban' at the command line.
For more information, refer to "Managing Software with yum",
available at .
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Topics Covered
Change Log
References
Update Instructions
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Product: Fedora 10
Version: 0.8.3
Release: 18.fc10
Summary: Ban IPs that make too many password failures
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!