SUSE-SU-2015:1695-1

Source
https://www.suse.com/support/update/announcement/2015/suse-su-20151695-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:1695-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2015:1695-1
Related
Published
2015-10-05T16:22:28Z
Modified
2015-10-05T16:22:28Z
Summary
Security update for openssh
Details

OpenSSH was updated to fix several security issues and bugs.

Please note that due to a bug in the previous shipped openssh version, sshd might not correctly restart. Please verify that the ssh daemon is running after installing this update.

These security issues were fixed:

  • CVE-2015-5352: The x11openhelper function, when ForwardX11Trusted mode is not used, lacked a check of the refusal deadline for X connections, which made it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window. (bsc#936695)

  • CVE-2015-5600: The kbdintnextdevice function in auth2-chall.c in sshd did not properly restrict the processing of keyboard-interactive devices within a single connection, which made it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list. (bsc#938746)

  • CVE-2015-4000: Removed and disabled weak DH groups to address LOGJAM. (bsc#932483)

  • Hardening patch to fix sftp RCE. (bsc#903649)

  • CVE-2015-6563: The monitor component in sshd accepted extraneous username data in MONITORREQPAMINITCTX requests, which allowed local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITORREQPWNAM request, related to monitor.c and monitor_wrap.c.

  • CVE-2015-6564: Use-after-free vulnerability in the mmanswerpamfreectx function in monitor.c in sshd might have allowed local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITORREQPAMFREECTX request.

Additional a bug was fixed that could lead to openssh not working in chroot (bsc#947458).

References

Affected packages

SUSE:Linux Enterprise Desktop 11 SP4 / openssh

Package

Name
openssh
Purl
purl:rpm/suse/openssh&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6p1-13.1

Ecosystem specific

{
    "binaries": [
        {
            "openssh-askpass-gnome": "6.6p1-13.3",
            "openssh-helpers": "6.6p1-13.1",
            "openssh": "6.6p1-13.1"
        }
    ]
}

SUSE:Linux Enterprise Desktop 11 SP4 / openssh-askpass-gnome

Package

Name
openssh-askpass-gnome
Purl
purl:rpm/suse/openssh-askpass-gnome&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6p1-13.3

Ecosystem specific

{
    "binaries": [
        {
            "openssh-askpass-gnome": "6.6p1-13.3",
            "openssh-helpers": "6.6p1-13.1",
            "openssh": "6.6p1-13.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4 / openssh

Package

Name
openssh
Purl
purl:rpm/suse/openssh&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6p1-13.1

Ecosystem specific

{
    "binaries": [
        {
            "openssh-askpass-gnome": "6.6p1-13.3",
            "openssh-fips": "6.6p1-13.1",
            "openssh-helpers": "6.6p1-13.1",
            "openssh": "6.6p1-13.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4 / openssh-askpass-gnome

Package

Name
openssh-askpass-gnome
Purl
purl:rpm/suse/openssh-askpass-gnome&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6p1-13.3

Ecosystem specific

{
    "binaries": [
        {
            "openssh-askpass-gnome": "6.6p1-13.3",
            "openssh-fips": "6.6p1-13.1",
            "openssh-helpers": "6.6p1-13.1",
            "openssh": "6.6p1-13.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 11 SP4 / openssh

Package

Name
openssh
Purl
purl:rpm/suse/openssh&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6p1-13.1

Ecosystem specific

{
    "binaries": [
        {
            "openssh-askpass-gnome": "6.6p1-13.3",
            "openssh-fips": "6.6p1-13.1",
            "openssh-helpers": "6.6p1-13.1",
            "openssh": "6.6p1-13.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 11 SP4 / openssh-askpass-gnome

Package

Name
openssh-askpass-gnome
Purl
purl:rpm/suse/openssh-askpass-gnome&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.6p1-13.3

Ecosystem specific

{
    "binaries": [
        {
            "openssh-askpass-gnome": "6.6p1-13.3",
            "openssh-fips": "6.6p1-13.1",
            "openssh-helpers": "6.6p1-13.1",
            "openssh": "6.6p1-13.1"
        }
    ]
}