USN-566-1: OpenSSH vulnerability - Security Advisories (RSS)

iBot · #1 (**permalink**) 01-09-2008

Referenced CVEs:
CVE-2007-4752

Description:
=========================================================== Ubuntu Security Notice USN-566-1 January 09, 2008 openssh vulnerability CVE-2007-4752 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 6.10 Ubuntu 7.04 Ubuntu 7.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: openssh-client 1:4.2p1-7ubuntu3.2 Ubuntu 6.10: openssh-client 1:4.3p2-5ubuntu1.1 Ubuntu 7.04: openssh-client 1:4.3p2-8ubuntu1.1 Ubuntu 7.10: openssh-client 1:4.6p1-5ubuntu0.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Jan Pechanec discovered that ssh would forward trusted X11 cookies when untrusted cookie generation failed. This could lead to unintended privileges being forwarded to a remote host.

More...

More UNIX and Linux Forum Topics You Might Find Helpful
Thread	Thread Starter	Forum	Replies	Last Post
USN-612-2: OpenSSH vulnerability	iBot	Security Advisories (RSS)	0	05-13-2008 08:50 AM
USN-597-1: OpenSSH vulnerability	iBot	Security Advisories (RSS)	0	04-01-2008 06:30 PM
Ubuntu: OpenSSH vulnerability	iBot	Security Advisories (RSS)	0	01-10-2008 10:40 AM
openSSH for AIX	gefa	AIX	2	02-24-2005 04:17 AM
OpenSSH	chenly	UNIX for Dummies Questions & Answers	21	03-13-2002 01:18 PM

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode