Описание
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:6.6p1-1 |
| lucid | not-affected | |
| precise | released | 1:5.9p1-5ubuntu1.3 |
| quantal | released | 1:6.0p1-3ubuntu1.2 |
| saucy | released | 1:6.2p2-6ubuntu0.3 |
| upstream | needs-triage |
Показывать по
5.8 Medium
CVSS2
Связанные уязвимости
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
The verify_host_key function in sshconnect.c in the client in OpenSSH ...
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
ELSA-2015-0425: openssh security, bug fix and enhancement update (MODERATE)
5.8 Medium
CVSS2