Описание
ELSA-2017-0641: openssh security and bug fix update (MODERATE)
[5.3p1-122]
- Allow to use ibmca crypto hardware (#1397547)
- CVE-2015-8325: privilege escalation via user's PAM environment and UseLogin=yes (1405374)
[5.3p1-121]
- Fix missing hmac-md5-96 from server offer (#1373836)
[5.3p1-120]
- Prevent infinite loop when Ctrl+Z pressed at password prompt (#1218424)
- Remove RC4 cipher and MD5 based MAC from the default client proposal (#1373836)
[5.3p1-119]
- Resolve sftp force permission colision with umask (#1341747)
- Relax bits needed check to allow hmac-sha2-512 with gss-group1-sha1- (#1353359)
- close ControlPersist background process stderr when not in debug mode (#1335539)
- Do not add a message 'The agent has no identities.' in ~/.ssh/authorized_keys (#1353410)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
openssh
5.3p1-122.el6
openssh-askpass
5.3p1-122.el6
openssh-clients
5.3p1-122.el6
openssh-ldap
5.3p1-122.el6
openssh-server
5.3p1-122.el6
pam_ssh_agent_auth
0.9.3-122.el6
Oracle Linux i686
openssh
5.3p1-122.el6
openssh-askpass
5.3p1-122.el6
openssh-clients
5.3p1-122.el6
openssh-ldap
5.3p1-122.el6
openssh-server
5.3p1-122.el6
pam_ssh_agent_auth
0.9.3-122.el6
Oracle Linux sparc64
openssh
5.3p1-122.el6
openssh-askpass
5.3p1-122.el6
openssh-clients
5.3p1-122.el6
openssh-ldap
5.3p1-122.el6
openssh-server
5.3p1-122.el6
Связанные CVE
Связанные уязвимости
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demonstrated by an LD_PRELOAD environment variable.
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demonstrated by an LD_PRELOAD environment variable.
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demonstrated by an LD_PRELOAD environment variable.
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p ...
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demonstrated by an LD_PRELOAD environment variable.