[Midnightbsd-cvs] [MidnightBSD/src] 707e96: A signal handler in sshd(8) calls a function that ...
Lucas Holt
noreply at github.com
Mon Jul 1 09:53:07 EDT 2024
Branch: refs/heads/stable/3.2
Home: https://github.com/MidnightBSD/src
Commit: 707e967ba5796534418ee8f056e47b2ffa89bcbf
https://github.com/MidnightBSD/src/commit/707e967ba5796534418ee8f056e47b2ffa89bcbf
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-07-01 (Mon, 01 Jul 2024)
Changed paths:
M crypto/openssh/log.c
M crypto/openssh/version.h
Log Message:
-----------
A signal handler in sshd(8) calls a function that is not async-signal-safe.
The signal handler is invoked when a client does not authenticate within the
LoginGraceTime seconds (120 by default). This signal handler executes in the
context of the sshd(8)'s privileged code, which is not sandboxed and runs
with full root privileges.
This issue is a regression of CVE-2006-5051 originally reported by Mark Dowd
and accidentally reintroduced in OpenSSH 8.5p1.
Obtained from: OpenSSH/FreeBSD
Commit: a95176a50cb2b504393eed16c9d75555b62b6741
https://github.com/MidnightBSD/src/commit/a95176a50cb2b504393eed16c9d75555b62b6741
Author: Lucas Holt <luke at foolishgames.com>
Date: 2024-07-01 (Mon, 01 Jul 2024)
Changed paths:
M UPDATING
Log Message:
-----------
document security issue
Compare: https://github.com/MidnightBSD/src/compare/ebc3981903f0...a95176a50cb2
To unsubscribe from these emails, change your notification settings at https://github.com/MidnightBSD/src/settings/notifications
More information about the Midnightbsd-cvs
mailing list