FEDORA-2015-13520

security update in Fedora 22 for openssh

Status: stable 3 years ago

This update brings fixes for vulnerabilities published with openssh-7.0 and is fixing pam_ssh_agent_auth module to be functional again.

How to install

sudo dnf upgrade --advisory=FEDORA-2015-13520

Comments 15

This update has been submitted for testing by jjelen.

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/116472/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/116472/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 testing updates repository.

This update has been pushed to testing

Works

karma: +1

Fix for 1251777 tested on FC22 and it does not work. This affects the pam_ssh_agent_auth package.

karma: -1

no regressions noted

karma: +1

No regressions detected

karma: +1

Critical path update approved

no regressions found

karma: +1

This update has reached the stable karma threshold and will be pushed to the stable updates repository

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/117145/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

This update has been pushed to stable

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 7

00 #1251777 pam_ssh_agent_auth does not work with gnome-keyring-daemon or ssh-agent
00 #1252844 CVE-2015-6563 openssh: Privilege separation weakness related to PAM support
00 #1252852 CVE-2015-6564 openssh: Use-after-free bug related to PAM support
00 #1252853 openssh: Use-after-free bug related to PAM support [fedora-all]
00 #1252854 openssh: Privilege separation weakness related to PAM support [fedora-all]
00 #1252861 openssh: Incorrectly set TTYs to be world-writable
00 #1252862 openssh: Incorrectly set TTYs to be world-writable [fedora-all]

Automated Test Results

Test Cases

00 Test Case OpenSSH