SUSE CVE-2013-2178

The apache-auth.conf, apache-nohome.conf, apache-noscript.conf, and apache-overflows.conf files in Fail2ban before 0.8.10 do not properly validate log messages, which allows remote attackers to block arbitrary IP addresses via certain messages in a request...

openSUSE Security Update : fail2ban (openSUSE-SU-2013:1120-1)

This update of fail2ban fixes a security vulnerability. Changes in fail2ban : - Fixes: Yaroslav Halchenko - 6ccd5781 filter.d/apache-auth,nohome,noscript,overflows - anchor failregex at the beginning and where applicable at the end. Addresses a possible DoS. Closes ghfail2ban/fail2ban248,...

Amazon Linux AMI : fail2ban (ALAS-2013-209)

The apache-auth.conf, apache-nohome.conf, apache-noscript.conf, and apache-overflows.conf files in Fail2ban before 0.8.10 do not properly validate log messages, which allows remote attackers to block arbitrary IP addresses via certain messages in a request. C Tenable Network Security, Inc. The...

CVE-2013-2178

The apache-auth.conf, apache-nohome.conf, apache-noscript.conf, and apache-overflows.conf files in Fail2ban before 0.8.10 do not properly validate log messages, which allows remote attackers to block arbitrary IP addresses via certain messages in a request...

CVE-2013-2178

The CVE-2013-2178 vulnerability affects Fail2ban before 0.8.10, where the files apache-auth.conf, apache-nohome.conf, apache-noscript.conf, and apache-overflows.conf do not properly validate log messages. This allows a remote attacker to block arbitrary IP addresses by crafting specific messages ...

Fedora 18 : fail2ban-0.8.10-1.fc18 (2013-10806)

Fail2Ban 0.8.10 addresses a possible remote denial of service attack when using the supplied apache- filters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

[ MDVSA-2013:191 ] fail2ban

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:191 http://www.mandriva.com/en/support/security/ Package : fail2ban Date : July 2, 2013 Affected: Business Server 1.0 Problem Description: Updated fail2ban packages fix CVE-2013-2178 Krzysztof...

Mandriva Linux Security Advisory : fail2ban (MDVSA-2013:191)

Updated fail2ban packages fix CVE-2013-2178 Krzysztof Katowicz-Kowalewski discovered a vulnerability in Fail2ban, a log monitoring and system which can act on attack by preventing hosts to connect to specified services using the local firewall. When using Fail2ban to monitor Apache logs, improper...

Fedora Update for fail2ban FEDORA-2013-10806

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for fail2ban FEDORA-2013-10806

Check for the Version of fail2ban OpenVAS Vulnerability Test Fedora Update for fail2ban FEDORA-2013-10806 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Updated fail2ban packages fix CVE-2013-2178

Krzysztof Katowicz-Kowalewski discovered a vulnerability in Fail2ban, a log monitoring and system which can act on attack by preventing hosts to connect to specified services using the local firewall. When using Fail2ban to monitor Apache logs, improper input validation in log parsing could enabl...

Debian DSA-2708-1 : fail2ban - denial of service

Krzysztof Katowicz-Kowalewski discovered a vulnerability in Fail2ban, a log monitoring and system which can act on attack by preventing hosts to connect to specified services using the local firewall. When using Fail2ban to monitor Apache logs, improper input validation in log parsing could enabl...

[SECURITY] [DSA 2708-1] fail2ban security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2708-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez June 16, 2013 http://www.debian.org/security/faq -...