Package name
ircd-hybrid
Date
2013-04-10
Advisory ID
MDVSA-2013:093
Affected versions
MBS1 x86_64

Problem description

Updated ircd-hybrid packages fix security vulnerability:

Bob Nomnomnom reported a Denial of Service vulnerability in
IRCD-Hybrid, an Internet Relay Chat server. A remote attacker may use
an error in the masks validation and crash the server (CVE-2013-0238).

Please note that due to the previously suboptimal nature of the
sysvinit script, systemd systems would not correctly detect the
daemon process as running and thus could not stop the service. As
a result, you may have to manually kill the process and start the
service after upgrading (i.e. killall ircd-hybrid; systemctl start
ircd-hybrid.service).

Updated packages

MBS1 x86_64

 ba5d07fc4a485b665995289da05d2550  mbs1/x86_64/ircd-hybrid-7.2.3-11.1.mbs1.x86_64.rpm
 56f380db80e139935111062c46c6f944  mbs1/x86_64/ircd-hybrid-devel-7.2.3-11.1.mbs1.x86_64.rpm 
 85eeac94496a539034464d738e7a26b9  mbs1/SRPMS/ircd-hybrid-7.2.3-11.1.mbs1.src.rpm

References