First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 215702
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Robert Buchholz <rbu@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 215702 depends on: Show dependency tree
Bug 215702 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2008-04-01 13:55 0000 
Secunia:
A weakness has been reported in OpenSSH, which can be exploited by
malicious, local users to bypass certain security restrictions.

The weakness is caused due to the improper implementation of the
"ForceCommand" directive. This can be exploited to execute arbitrary
commands via the ~/.ssh/rc file even if a "ForceCommand" directive is
in effect.

The weakness is reported in versions prior to 4.9 and 4.9p1.

SOLUTION:
Update to version 4.9 or 4.9p1.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://marc.info/?l=openssh-unix-dev&m=120692745026265&w=2

------- Comment #1 From SpanKY 2008-04-01 15:38:56 0000 ------- 
if we could get a small diff for 4.7_p1, that would be best ...

------- Comment #2 From Robert Buchholz 2008-04-01 16:04:31 0000 ------- 
The patch is here:
ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.3/common/001_openssh.patch

------- Comment #3 From SpanKY 2008-04-01 18:43:15 0000 ------- 
openssh-4.7_p1-r6 in the tree then with that one fix, thanks

openssh-4.9_p1 is also in the tree, but it's missing updated patches, so
stabilizing that version would just make users'/admins' lives painful

------- Comment #4 From Robert Buchholz 2008-04-01 19:21:00 0000 ------- 
Arches, please test and mark stable:
=net-misc/openssh-4.7_p1-r6
Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 release s390 sh
sparc x86"

------- Comment #5 From Christian Faulhammer 2008-04-01 22:53:36 0000 ------- 
x86 stable

------- Comment #6 From Richard Freeman 2008-04-02 00:41:49 0000 ------- 
amd64 stable

------- Comment #7 From Raúl Porcel 2008-04-02 11:44:55 0000 ------- 
alpha/ia64/sparc stable

------- Comment #8 From Markus Rothe 2008-04-02 15:52:35 0000 ------- 
ppc64 stable

------- Comment #9 From Jeroen Roovers 2008-04-02 16:04:56 0000 ------- 
Stable for HPPA.

------- Comment #10 From Tobias Scherbaum 2008-04-03 16:55:24 0000 ------- 
ppc stable

------- Comment #11 From Robert Buchholz 2008-04-03 22:39:54 0000 ------- 
request has been filed

------- Comment #12 From Peter Volkov 2008-04-04 05:01:21 0000 ------- 
Fixed in release snapshot.

------- Comment #13 From Robert Buchholz 2008-04-05 12:53:53 0000 ------- 
GLSA 200804-03

------- Comment #14 From Robert Buchholz 2008-04-05 12:55:16 0000 ------- 
Fixed for ~arch in 5.0_p1
First Last Prev Next    No search results available      Search page      Enter new bug