Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: 200701-01 Standard: Preventing DenyHosts Remote DoS Vulnerability

gentoo
Calendar Grey January 3, 2007
Dist Gentoo Esm H88
Gentoo GLSA 200702-02 tackles critical flaws in OpenSSH that can result in unauthorized access. Update now to enhance security.
DenyHosts does not correctly parse log entries, potentially causing a remote Denial of Service.

Summary

Gentoo Linux Security Advisory GLSA 200701-01 https://security.gentoo.org/ Severity: Normal Title: DenyHosts: Denial of Service Date: January 03, 2007 Bugs: #157163 ID: 200701-01

Synopsis ======= DenyHosts does not correctly parse log entries, potentially causing a remote Denial of Service.
Background ========= DenyHosts is designed to monitor SSH servers for repeated failed login attempts.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-admin/denyhosts < 2.6 >= 2.6
========== Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that DenyHosts used an incomplete regular expression to parse failed login attempts.
Impact ===== A remote un...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo security issue update Denial of Service DenyHosts

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo security issue update Denial of Service DenyHosts

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here