Synopsis:	Moderate: acpid security update
Issue date:	2009-05-07
CVE Names:	CVE-2009-0798

Anthony de Almeida Lopes of Outpost24 AB reported a denial of service 
flaw in the acpid daemon's error handling. If an attacker could exhaust 
the sockets open to acpid, the daemon would enter an infinite loop, 
consuming most CPU resources and preventing acpid from communicating 
with legitimate processes. (CVE-2009-0798)

SL 3.0.x

       SRPMS:
acpid-1.0.2-4.src.rpm
       i386:
There is no i386 version on SL3
       x86_64:
acpid-1.0.2-4.x86_64.rpm

SL 4.x

       SRPMS:
acpid-1.0.3-2.el4_7.1.src.rpm
       i386:
acpid-1.0.3-2.el4_7.1.i386.rpm
       x86_64:
acpid-1.0.3-2.el4_7.1.x86_64.rpm

SL 5.x

       SRPMS:
acpid-1.0.4-7.el5_3.1.src.rpm
       i386:
acpid-1.0.4-7.el5_3.1.i386.rpm
       x86_64:
acpid-1.0.4-7.el5_3.1.x86_64.rpm

-Connie Sieh
-Troy Dawson