CVE-2015-5352
Published: 2 August 2015
The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.
Priority
Status
Package | Release | Status |
---|---|---|
openssh Launchpad, Ubuntu, Debian |
precise |
Released
(1:5.9p1-5ubuntu1.6)
|
trusty |
Released
(1:6.6p1-2ubuntu2.2)
|
|
upstream |
Released
(6.9)
|
|
utopic |
Ignored
(end of life)
|
|
vivid |
Released
(1:6.7p1-5ubuntu1.2)
|
|
Patches: upstream: https://anongit.mindrot.org/openssh.git/commit/?h=V_6_9&id=1bf477d3cdf1a864646d59820878783d42357a1d upstream: https://github.com/openssh/openssh-portable/commit/1bf477d3cdf1a864646d59820878783d42357a1d |