openSUSE Security Update: fail2ban ______________________________________________________________________________
Announcement ID: openSUSE-SU-2011:1175-1 Rating: moderate References: #690853 Cross-References: CVE-2009-5023 Affected Products: openSUSE 11.4 openSUSE 11.3 ______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
fail2ban IP used insecure temporary files when unbanning an IP address (CVE-2009-5023).
Patch Instructions:
To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch fail2ban-5301
- openSUSE 11.3:
zypper in -t patch fail2ban-5301
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.4 (noarch):
fail2ban-0.8.4-11.12.1
- openSUSE 11.3 (noarch):
fail2ban-0.8.4-5.3.1
References:
http://support.novell.com/security/cve/CVE-2009-5023.html https://bugzilla.novell.com/690853