VIR Vulnerability Intelligence Relay

CVE-2012-5642

high
Published 2012-12-31 · Modified 2026-04-29
CVSS v3
CVSS v2
7.5
VIR risk
7.5

Description

server/action.py in Fail2ban before 0.8.8 does not properly handle the content of the matches tag, which might allow remote attackers to trigger unsafe behavior in a custom action file via unspecified symbols in this content.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-5642

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://github.com/fail2ban/fail2ban/commit/83109bc

OS impact
OSVersionStatusFixed in
debian debianbookwormfixed0.8.6-3wheezy1
debian debianbullseyefixed0.8.6-3wheezy1
debian debianforkyfixed0.8.6-3wheezy1
debian debiansidfixed0.8.6-3wheezy1
debian debiantrixiefixed0.8.6-3wheezy1

Application impact
VendorProductVersionsFixed
fail2banfail2ban{"endIncluding":"0.8.7.1"}
fail2banfail2ban0.1.0
fail2banfail2ban0.1.1
fail2banfail2ban0.1.2
fail2banfail2ban0.3.0
fail2banfail2ban0.3.1
fail2banfail2ban0.4.0
fail2banfail2ban0.4.1
fail2banfail2ban0.5.0
fail2banfail2ban0.5.1
fail2banfail2ban0.5.2
fail2banfail2ban0.5.3
fail2banfail2ban0.5.4
fail2banfail2ban0.5.5
fail2banfail2ban0.6.0
fail2banfail2ban0.6.1
fail2banfail2ban0.7.0
fail2banfail2ban0.7.1
fail2banfail2ban0.7.2
fail2banfail2ban0.7.3
fail2banfail2ban0.7.4
fail2banfail2ban0.7.5
fail2banfail2ban0.7.6
fail2banfail2ban0.7.7
fail2banfail2ban0.7.8
fail2banfail2ban0.7.9
fail2banfail2ban0.8.0
fail2banfail2ban0.8.1
fail2banfail2ban0.8.2
fail2banfail2ban0.8.3
fail2banfail2ban0.8.4
fail2banfail2ban0.8.5
fail2banfail2ban0.8.6
fail2banfail2ban0.8.7

References

Verify integrity in audit chain (admin only). AS-IS.