728412 – (CVE-2018-20685) [Tracker] SSH scp access restriction bypass (CVE-2018-20685)

Bug 728412 (CVE-2018-20685) - [Tracker] SSH scp access restriction bypass (CVE-2018-20685)

Summary: [Tracker] SSH scp access restriction bypass (CVE-2018-20685)

Status:	RESOLVED FIXED

Alias:	CVE-2018-20685

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:	675520 CVE-2018-12437
Blocks:
	Show dependency tree

Reported:	2020-06-15 19:56 UTC by Sam James
Modified:	2020-07-29 23:47 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sam James archtester

2020-06-15 19:56:27 UTC

Description:
"In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side."

(Not a new vulnerability; creating tracker to free the alias).