Vulnerabilities > CVE-2012-5642 - Arbitrary Log Content Injection vulnerability in Fail2ban
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
server/action.py in Fail2ban before 0.8.8 does not properly handle the content of the matches tag, which might allow remote attackers to trigger unsafe behavior in a custom action file via unspecified symbols in this content.
Vulnerable Configurations
Nessus
NASL family SuSE Local Security Checks NASL id OPENSUSE-2013-267.NASL description This update of fail2ban fixes a startup related startup-problem and a security problem fixed upstream (CVE-2012-5642). last seen 2020-06-05 modified 2014-06-13 plugin id 74950 published 2014-06-13 reporter This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/74950 title openSUSE Security Update : fail2ban (openSUSE-SU-2013:0566-1) NASL family Mandriva Local Security Checks NASL id MANDRIVA_MDVSA-2013-078.NASL description Updated fail2ban package fixes security vulnerability : fail2ban before 0.8.8 didn last seen 2020-06-01 modified 2020-06-02 plugin id 66092 published 2013-04-20 reporter This script is Copyright (C) 2013-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/66092 title Mandriva Linux Security Advisory : fail2ban (MDVSA-2013:078) NASL family Fedora Local Security Checks NASL id FEDORA_2012-20589.NASL description Update to 0.8.8 (CVE-2012-5642 Bug #887914) - Fixes : - Alan Jenkins - [8c38907] Removed last seen 2020-03-17 modified 2013-01-14 plugin id 63496 published 2013-01-14 reporter This script is Copyright (C) 2013-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/63496 title Fedora 18 : fail2ban-0.8.8-1.fc18 (2012-20589) NASL family Fedora Local Security Checks NASL id FEDORA_2012-20619.NASL description Update to 0.8.8 (CVE-2012-5642 Bug #887914) - Fixes : - Alan Jenkins - [8c38907] Removed last seen 2020-03-17 modified 2012-12-28 plugin id 63343 published 2012-12-28 reporter This script is Copyright (C) 2012-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/63343 title Fedora 17 : fail2ban-0.8.8-1.fc17 (2012-20619)
References
- http://lists.opensuse.org/opensuse-updates/2013-04/msg00001.html
- http://lists.opensuse.org/opensuse-updates/2013-04/msg00002.html
- http://sourceforge.net/mailarchive/message.php?msg_id=30193056
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:078
- http://www.openwall.com/lists/oss-security/2012/12/17/2
- https://bugs.gentoo.org/show_bug.cgi?id=447572
- https://bugzilla.redhat.com/show_bug.cgi?id=887914
- https://github.com/fail2ban/fail2ban/commit/83109bc
- https://raw.github.com/fail2ban/fail2ban/master/ChangeLog