This update fixes a bug in the SSH parser, where a malformed banner could lead to evasion of SSH rules and missing log entries. In some cases it may also lead to a crash, CVE-2014-6603. Additionally, this release also addresses a new IPv6 issue that can lead to evasion.
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2014-11302
Please log in to add feedback.
This update has been submitted for testing by sgrubb.
AutoQA: depcheck test PASSED on i386. Result log: http://autoqa.fedoraproject.org/report/1ha89 (results are informative only)
AutoQA: depcheck test PASSED on x86_64. Result log: http://autoqa.fedoraproject.org/report/1ha8b (results are informative only)
This update is currently being pushed to the Fedora 21 testing updates repository.
This update has been pushed to testing
This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by sgrubb.
AutoQA: upgradepath test PASSED on noarch. Result log: http://autoqa.fedoraproject.org/report/1hgix (results are informative only)
This update is currently being pushed to the Fedora 21 stable updates repository.
This update has been pushed to stable