VDB

GCVE-110-MAGEIA-2014-80

GCVE-110-MAGEIA-2014-80
Advisory Published
Vulnetix · Advisory published February 17, 2014
Helmut Grohne discovered that denyhosts, a tool preventing SSH brute-force attacks, could be used to perform remote denial of service against the SSH daemon. Incorrectly specified regular expressions used to detect brute force attacks in authentication logs could be exploited by a malicious user to forge crafted login names in order to make denyhosts ban arbitrary IP addresses (CVE-2013-6890). This update also includes a fix for a regression introduced when fixing CVE-2013-6890.

Affected Products

VendorProductVersionsPlatforms
Mageiadenyhosts0 (affected), 2.6-4.4.mga3 (unaffected), 0 (affected), 2.6-4.4.mga3 (unaffected)
Mageiaflacon0 (affected), 0.8.0-2.1.mga4 (unaffected)

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›