Fedora 9: FEDORA-2009-1736 Critical: Fail2ban Remote DoS Threat
fedora
February 14, 2009
This updates fixes CVE-2009-0362
Summary
Fail2ban scans log files like /var/log/pwdfail or
/var/log/apache/error_log and bans IP that makes too many password
failures. It updates firewall rules to reject the IP address.
This updates fixes CVE-2009-0362. See https://www.cve.org/CVERecord?id=CVE-2009-0362 for further details.
* Sat Feb 14 2009 Axel Thimm
- Fix CVE-2009-0362 (Fedora bugs #485461, #485464, #485465, #485466).
* Mon Dec 1 2008 Ignacio Vazquez-Abrams
- Rebuild for Python 2.6
* Sun Aug 24 2008 Axel Thimm
- Update to 0.8.3.
* Wed May 21 2008 Tom "spot" Callaway
- fix license tag
* Thu Mar 27 2008 Axel Thimm
- Close on exec fixes by Jonathan Underwood.
[ 1 ] Bug #485461 - CVE-2009-0362 fail2ban: remote DoS via crafted domain names
https://bugzilla.redhat.com/show_bug.cgi?id=485461
su -c 'yum update fail2ban' at the command line.
For more information, refer to "Managing Software with yum",
available at .
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Topics Covered
Change Log
References
Update Instructions
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Product: Fedora 9
Version: 0.8.3
Release: 18.fc9
Summary: Ban IPs that make too many password failures
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!