Wind River Support Network

HomeDefectsLIN7-4537
Fixed

LIN7-4537 : Security Advisory - openssh - CVE-2015-5352

Created: Aug 16, 2015    Updated: Sep 8, 2018
Resolved Date: Aug 20, 2015
Found In Version: 7.0.0.8
Fix Version: 7.0.0.9
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-5352

Other Downloads


CVEs


Live chat
Online