Candidate: CVE-2012-2251
PublicDate: 2013-01-11 01:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2251
 http://www.openwall.com/lists/oss-security/2012/11/28/2
Description:
 rssh 2.3.2, as used by Debian, Fedora, and others, when the rsync protocol
 is enabled, allows local users to bypass intended restricted shell access
 via a (1) "-e" or (2) "--" command line option.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_rssh:
upstream_rssh: released (2.3.4)
hardy_rssh: ignored (reached end-of-life)
lucid_rssh: ignored (reached end-of-life)
oneiric_rssh: ignored (reached end-of-life)
precise_rssh: ignored (reached end-of-life)
precise/esm_rssh: DNE (precise was needed)
quantal_rssh: ignored (reached end-of-life)
raring_rssh: ignored (reached end-of-life)
saucy_rssh: not-affected (2.3.4-3)
trusty_rssh: not-affected (2.3.4-4)
trusty/esm_rssh: not-affected (2.3.4-4)
utopic_rssh: not-affected (2.3.4-4)
vivid_rssh: not-affected (2.3.4-4)
vivid/stable-phone-overlay_rssh: DNE
vivid/ubuntu-core_rssh: DNE
wily_rssh: not-affected (2.3.4-4)
xenial_rssh: not-affected (2.3.4-4)
yakkety_rssh: not-affected (2.3.4-4)
zesty_rssh: not-affected (2.3.4-4)
devel_rssh: not-affected (2.3.4-4)