Package fail2ban updated to version 0.8.13-alt1 for branch sisyphus in task 120529.

Published: 2014-02-01
Modified: 2024-11-21

CVE-2013-7176

config/filter.d/postfix.conf in the postfix filter in Fail2ban before 0.8.11 allows remote attackers to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression.

Severity: MEDIUM (5.0)

References:

openSUSE-SU-2014:0348
openSUSE-SU-2014:0348
DSA-2979
DSA-2979
VU#686662
VU#686662
https://github.com/fail2ban/fail2ban/commit/eb2f0c927257120dfc32d2450fd63f1962f38821
https://github.com/fail2ban/fail2ban/commit/eb2f0c927257120dfc32d2450fd63f1962f38821

Published: 2014-02-01
Modified: 2024-11-21

CVE-2013-7177

config/filter.d/cyrus-imap.conf in the cyrus-imap filter in Fail2ban before 0.8.11 allows remote attackers to trigger the blocking of an arbitrary IP address via a crafted e-mail address that matches an improperly designed regular expression.

Severity: MEDIUM (5.0)

References:

openSUSE-SU-2014:0348
openSUSE-SU-2014:0348
DSA-2979
DSA-2979
VU#686662
VU#686662
https://github.com/fail2ban/fail2ban/commit/bd175f026737d66e7110868fb50b3760ff75e087
https://github.com/fail2ban/fail2ban/commit/bd175f026737d66e7110868fb50b3760ff75e087

Version: 2.1.0

Package fail2ban update in sisyphus on 2014-06-02

ALT-PU-2014-1699-1

Closed vulnerabilities

CVE-2013-7176

CVE-2013-7177