Package name
fail2ban
Date
2013-04-09
Advisory ID
MDVSA-2013:078
Affected versions
MBS1 x86_64

Problem description

Updated fail2ban package fixes security vulnerability:

fail2ban before 0.8.8 didn't escape the content of \<matches\> (if used
in custom action files), which could cause issues on the system running
fail2ban as it scans log files, depending on what content is matched,
since that content could contain arbitrary symbols (CVE-2012-5642).

Updated packages

MBS1 x86_64

 02b6ad856438586b58cb6226d210cedd  mbs1/x86_64/fail2ban-0.8.6-3.1.mbs1.noarch.rpm 
 1f6f5e01367b978b7f1643eb754a5f28  mbs1/SRPMS/fail2ban-0.8.6-3.1.mbs1.src.rpm

References