Lucene search
GoogleOSV:DSA-1456-1HistoryJan 09, 2008 - 12:00 a.m.
fail2ban
2008-01-0900:00:00
Google
osv.dev
3
0.19 Low
EPSS
Percentile
96.3%
Daniel B. Cid discovered that fail2ban, a tool to block IP addresses
that cause login failures, is too liberal about parsing SSH log files,
allowing an attacker to block any IP address.
The old stable distribution (sarge) doesn’t contain fail2ban.
For the stable distribution (etch), this problem has been fixed in
version 0.7.5-2etch1.
For the unstable distribution (sid), this problem has been fixed in
version 0.8.0-4.
We recommend that you upgrade your fail2ban package.
References
Related
openvas
openvas
Gentoo Security Advisory GLSA 200707-13 (fail2ban)
2008-09-24 00:00:00
Debian Security Advisory DSA 1456-1 (fail2ban)
2008-01-31 00:00:00
Debian: Security Advisory (DSA-1456-1)
2008-01-31 00:00:00
nessus
nessus
GLSA-200707-13 : Fail2ban: Denial of Service
2007-07-30 00:00:00
Debian DSA-1456-1 : fail2ban - programming error
2008-01-10 00:00:00
gentoo
gentoo
Fail2ban: Denial of service
2007-07-28 00:00:00
debian
debian
[SECURITY] [DSA 1456-1] New fail2ban packages fix denial of service
2008-01-09 22:02:37
nvd
nvd
CVE-2009-0362
2009-02-13 01:30:00
CVE-2007-4321
2007-08-14 00:17:00
debiancve
debiancve
CVE-2007-4321
2007-08-14 00:17:00
CVE-2009-0362
2022-10-03 16:24:09
prion
prion
Design/Logic Flaw
2007-08-14 00:17:00
Authentication flaw
2009-02-13 01:30:00
ubuntucve
ubuntucve
CVE-2009-0362
2009-02-13 00:00:00
CVE-2007-4321
2007-08-14 00:00:00
cve
cve
CVE-2007-4321
2007-08-14 00:17:00
CVE-2009-0362
2022-10-03 16:24:09
cvelist
cvelist
CVE-2009-0362
2022-10-03 16:24:09
CVE-2007-4321
2007-08-14 00:00:00