CVE-2005-2797

Publication date 6 September 2005

Last updated 24 July 2024

Ubuntu priority

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding (”-D” option) when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
openssh	7.04 feisty	Fixed 4.3p2-5ubuntu1
	6.10 edgy	Fixed 4.3p2-5ubuntu1
	6.06 LTS dapper	Fixed 4.2p1-7ubuntu3.1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2005-2797