Fedora 15 : fail2ban-0.8.4-27.fc15 (2011-5135)

This script is Copyright (C) 2011-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

fail2ban used predictable /tmp files which a local user can allocate
before fail2ban does. All tmp files have been moved to
/var/lib/fail2ban. This also helps with selinux policies.

Another security related fix is that fail2ban defaulted to gamin which
conflicts with selinux, so users had to typically choose between
fail2ban and selinux. fail2ban now defaults to inotify (thanks to
Jonathan Underwood).

There are also some minor bugs fixed :

- tmpfiles.d support for tmpfs /var/run

- example mail domains changed to normalized
example.com.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=551895
https://bugzilla.redhat.com/show_bug.cgi?id=552947
https://bugzilla.redhat.com/show_bug.cgi?id=656584
https://bugzilla.redhat.com/show_bug.cgi?id=658849
https://bugzilla.redhat.com/show_bug.cgi?id=669965
https://bugzilla.redhat.com/show_bug.cgi?id=669966
http://www.nessus.org/u?30db9fe7

Solution :

Update the affected fail2ban package.

Risk factor :

High

Family: Fedora Local Security Checks

Nessus Plugin ID: 53461 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now