Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

USN-566-1: OpenSSH vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) USN-566-1: OpenSSH vulnerability
# 1  
Old 01-09-2008
USN-566-1: OpenSSH vulnerability
Referenced CVEs:
CVE-2007-4752


Description:
=========================================================== Ubuntu Security Notice USN-566-1 January 09, 2008 openssh vulnerability CVE-2007-4752 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 6.10 Ubuntu 7.04 Ubuntu 7.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: openssh-client 1:4.2p1-7ubuntu3.2 Ubuntu 6.10: openssh-client 1:4.3p2-5ubuntu1.1 Ubuntu 7.04: openssh-client 1:4.3p2-8ubuntu1.1 Ubuntu 7.10: openssh-client 1:4.6p1-5ubuntu0.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Jan Pechanec discovered that ssh would forward trusted X11 cookies when untrusted cookie generation failed. This could lead to unintended privileges being forwarded to a remote host.





More...
Login or Register to Ask a Question

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Red Hat

Vulnerability with ssh in OpenSSH in an RHEL installation

There was a security analysis run on one server which has RHEL 5.8 installed and it is showing security vulnerabilities with respect to ssh in OpenSSH with reference no CVE-2007-4752. The vulnerability solution in the security report is showing solution as below: 1) Download and apply the... (3 Replies)
Discussion started by: RHCE
3 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

lsh-export-key

LSH-EXPORT-KEY(1)						    Lsh Manuals 						 LSH-EXPORT-KEY(1)

NAME

       lsh-export-key - Reads the key on stdin and output in OpenSSH/SSH2 format.

SYNOPSIS

       lsh-export-key [OPTION...]

DESCRIPTION

       CAUTION!  The  information  in  this manpage may be invalid or outdated. For authorative information on lsh, please see it's Texinfo manual
       (see the SEE ALSO section).

       The given key (supplied on stdin or in the file given with the --input-file option) is read and written to stdout (or the file supplied	by
       the --output-file option) in the desired format (fingerprint, OpenSSH format or SSH2/IETF style).

EXAMPLES

       To convert the default public key (~/.lsh/identity.pub) to OpenSSH format (to put in authorized_keys on a host using the OpenSSH sshd).

       $ lsh-export-key --openssh < ~/.lsh/identity.pub

       To check the fingerprint of your servers key.

       $ lsh-export-key --fingerprint < /etc/lsh_host_key.pub
       MD5 fingerprint: b9:86:04:e0:89:2b:5b:c7:0c:2b:4b:3f:24:d2:41:59
       Bubble Babble: xefes-vyrum-buduk-nihyr-zotan-sizyr-nazik-hukyv-biloc-caceg-taxyx
       $

OPTIONS

       -c, --comment=comment string
	      Add comment to output key.

       --fingerprint
	      Show key fingerprint.

       -o, --output-file=Filename Default is stdout

       --openssh
	      Output key in openssh single-line format.

       -r, --input-file=Filename
	      Default is stdin

       -s, --subject=subject string
	      Add subject to output key.

       --debug
	      Print huge amounts of debug information

       --log-file=File name
	      Append messages to this file.

       -q, --quiet
	      Suppress all warnings and diagnostic messages

       --trace
	      Detailed trace

       -v, --verbose
	      Verbose diagnostic messages

       -?, --help
	      Give this help list

       --usage
	      Give a short usage message

       -V, --version
	      Print program version

       Mandatory or optional arguments to long options are also mandatory or optional for any corresponding short options.

DIAGNOSTICS

       See the --verbose , --trace and --debug options.

REPORTING BUGS

       Report bugs to <bug-lsh@gnu.org>.

COPYING

       The lsh suite of programs is distributed under the GNU General Public License; see the COPYING and AUTHORS files in the source distribution
       for details.

AUTHOR

       The lsh program suite is written mainly by Niels Moller <nisse@lysator.liu.se>.

       This man-page was written for lsh 2.0 by Pontus Freyhult <pont_lsh@soua.net>, it is based on a template	written  by  J.H.M.  Dassen  (Ray)
       <jdassen@wi.LeidenUniv.nl>.

SEE ALSO

       DSA(5),	lsh(1),  lsh-authorize(1),  lsh-decode-key(1),	lsh-decrypt-key(1),  lsh-keygen(1), lsh-make-seed(1), lsh-upgrade(1), lsh-upgrade-
       key(1), lsh-writekey(1), lshd(8), secsh(5), SHA(5), SPKI(5), ssh-conv(1)

       The full documentation for lsh is maintained as a Texinfo manual.  If the info and lsh programs are properly installed at  your	site,  the
       command

	      info lsh

       should give you access to the complete manual.

LSH-EXPORT-KEY							   NOVEMBER 2004						 LSH-EXPORT-KEY(1)