ConfigServer Blog » New csf v5.42 (security fix)

ConfigServer Services
cPanel Server Services from Way to The Web Ltd

Home

Site Blog

Services

Support

Terms & Conditions

Privacy Policy

Contact Us

cPanel Server Services

cPanel MailScanner Service

Server Recovery Service

Exploit Scan Service

General Server Management

cPanel MailScanner Front-End

Services FAQ

Ordering Terms & Conditions

ConfigServer Scripts Forum

ConfigServer eXploit Scanner

ConfigServer Firewall

ConfigServer ModSec Control

ConfigServer Explorer

ConfigServer Mail Queues

ConfigServer Mail Manage

Why you should use :fail:

Searching for Spammers

Latest Vulns & Viruses

Free MailScanner Installer

Free ClamAV install for MS

Upgrading MS and ClamAV

Way to the Web Limited

ConfigServer Blog

Please note that support is not provided through this blog - any support related comments will be removed

10 Dec 11 : New csf v5.42 (security fix)

Category: General

Posted by: Chirpy

SECURITY FIX. Anyone running csf on a DirectAdmin server should upgrade to this release immediately:

Changes:

Add check for successful open of admin.list on DA servers to avoid a segfault, which could lead to a buffer overflow

This is in response to http://www.exploit-db.com/exploits/18225/

This issue is apparent on DirectAdmin servers only where this C wrapper is used.

Comments

No comments yet

Add Comment

This item is closed, it's not possible to add new comments to it or to vote on it

Navigation

Previous Item

Next Item

Today

10 Dec 11 : New csf v5.42 (security fix)

Comments

Add Comment

Sidebar