MGASA-2023-0120 - Updated perl-Net-Server packages fix security vulnerability Publication date: 31 Mar 2023 URL: https://advisories.mageia.org/MGASA-2023-0120.html Type: security Affected Mageia releases: 8 CVE: CVE-2013-1841 Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow remote attackers to bypass ACL restrictions via the hostname parameter. (CVE-2013-1841) References: - https://bugs.mageia.org/show_bug.cgi?id=31678 - https://lists.suse.com/pipermail/sle-security-updates/2023-March/014043.html - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1841 SRPMS: - 8/core/perl-Net-Server-2.9.0-5.1.mga8
Mageia 2023-0120: perl-Net-Server security update
Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow remote attackers to bypass ACL restricti...
Summary
Net-Server, when the reverse-lookups option is enabled, does not check if
the hostname resolves to the source IP address, which might allow remote
attackers to bypass ACL restrictions via the hostname parameter.
(CVE-2013-1841)
References
- https://bugs.mageia.org/show_bug.cgi?id=31678
- https://lists.suse.com/pipermail/sle-security-updates/2023-March/014043.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1841
Resolution
MGASA-2023-0120 - Updated perl-Net-Server packages fix security vulnerability
SRPMS
- 8/core/perl-Net-Server-2.9.0-5.1.mga8
Severity
Publication date: 31 Mar 2023
URL: https://advisories.mageia.org/MGASA-2023-0120.html
Type: security
CVE: CVE-2013-1841
News
HOWTOs
About Us
Powered By
