Bug 643453 (CVE-2010-3843)
Summary: | CVE-2010-3843 ettercap: insecure global settings file | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Vincent Danen <vdanen> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | ago, gwync |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | ettercap 0.7.5 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2013-01-10 18:15:04 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 643454, 709422, 709423 | ||
Bug Blocks: |
Description
Vincent Danen
2010-10-15 16:42:18 UTC
Created ettercap tracking bugs for this issue Affects: fedora-all [bug 643454] This also affects ettercap in EPEL4 and 5. Created ettercap tracking bugs for this issue Affects: epel-4 [bug 709422] Affects: epel-5 [bug 709423] this is fixed in 0.7.5 0.7.5 is currently in all supported releases of Fedora. This is fixed in EPEL6 via 0.7.4-2.el6 and EPEL5 via 0.7.3-20.el5 and was also patched in Fedora 16 via 0.7.4-3.fc16. Just a note that the fix for this issue also resolves CVE-2010-3844, which was the "incorrect parsing of configuration files" from the original report. |