CVE-2016-10009 in Ubuntu

CVE-2016-10009

Priority

Low

Description

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH
before 7.4 allows remote attackers to execute arbitrary local PKCS#11
modules by leveraging control over a forwarded agent-socket.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10009
https://www.openssh.com/txt/release-7.4
http://www.openwall.com/lists/oss-security/2016/12/19/2

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848714

Assigned-to

sbeattie

Package

Source: openssh (LP Ubuntu Debian)

Upstream:	released (1:7.4p1-1)
Ubuntu 12.04 ESM (Precise Pangolin):	needed
Ubuntu 14.04 LTS (Trusty Tahr):	needed
Ubuntu 16.04 LTS (Xenial Xerus):	needed
Ubuntu 17.04 (Zesty Zapus):	not-affected (1:7.4p1-1)
Ubuntu 17.10 (Artful Aardvark):	not-affected (1:7.4p1-1)
Ubuntu 18.04 LTS (Bionic Beaver):	not-affected (1:7.4p1-1)

Patches:

Upstream:

https://github.com/openssh/openssh-portable/commit/786d5994da79151180cb14a6cf157ebbba61c0cc

More Information

Updated: 2017-12-14 19:19:49 UTC (commit 13907)