> CVE-2007-4321[0]:
this issue is partially resolved with the fresh upload of 0.8.1.
I said partially due to the facts I will describe in the follow-up
email.
N.B. Partial fix presented in 0.8.1 defeats the examples described in
CVE, so please come up with another example which would prove that
rem
Package: fail2ban
Version: 0.7.5-2
Severity: grave
Tags: security
Hi,
CVE-2007-4321[0]:
fail2ban 0.8 and earlier does not properly parse sshd log
files, which allows remote attackers to add arbitrary hosts
to the /etc/hosts.deny file and cause a denial of service by
adding arbitrary IP address
2 matches
Mail list logo
