[SECURITY] Fedora 20 Update: denyhosts-2.6-29.fc20.1
updates at fedoraproject.org
updates at fedoraproject.org
Mon Jan 5 07:38:34 UTC 2015
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-17067
2014-12-16 21:11:30
--------------------------------------------------------------------------------
Name : denyhosts
Product : Fedora 20
Version : 2.6
Release : 29.fc20.1
URL : http://denyhosts.sourceforge.net/
Summary : A script to help thwart ssh server attacks
Description :
DenyHosts is a Python script that analyzes the sshd server log
messages to determine which hosts are attempting to hack into your
system. It also determines what user accounts are being targeted. It
keeps track of the frequency of attempts from each host and, upon
discovering a repeated attack host, updates the /etc/hosts.deny file
to prevent future break-in attempts from that host. Email reports can
be sent to a system admin.
--------------------------------------------------------------------------------
Update Information:
Fix security bug
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Till Maas <opensource at till.name> - 2.6-29.1
- Add patch from master for CVE-2013-6890 (rhbz #1045983)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1045982 - CVE-2013-6890 denyhosts: remote denial of ssh service
https://bugzilla.redhat.com/show_bug.cgi?id=1045982
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update denyhosts' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list