FEDORA-2015-13520

security update in Fedora 22 for openssh

Status: stable 3 years ago

This update brings fixes for vulnerabilities published with openssh-7.0 and is fixing pam_ssh_agent_auth module to be functional again.

How to install

sudo dnf upgrade --advisory=FEDORA-2015-13520

Comments 15

This update has been submitted for testing by jjelen.

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/116472/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/116472/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 testing updates repository.

This update has been pushed to testing

Works

karma: +1

Fix for 1251777 tested on FC22 and it does not work. This affects the pam_ssh_agent_auth package.

karma: -1

no regressions noted

karma: +1

No regressions detected

karma: +1

Critical path update approved

no regressions found

karma: +1

This update has reached the stable karma threshold and will be pushed to the stable updates repository

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/117145/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

This update has been pushed to stable


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

Does the system's basic functionality continue to work after this update?
#1251777 pam_ssh_agent_auth does not work with gnome-keyring-daemon or ssh-agent
#1252844 CVE-2015-6563 openssh: Privilege separation weakness related to PAM support
#1252852 CVE-2015-6564 openssh: Use-after-free bug related to PAM support
#1252853 openssh: Use-after-free bug related to PAM support [fedora-all]
#1252854 openssh: Privilege separation weakness related to PAM support [fedora-all]
#1252861 openssh: Incorrectly set TTYs to be world-writable
#1252862 openssh: Incorrectly set TTYs to be world-writable [fedora-all]
Test Case OpenSSH
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
Autopush
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 7

00 #1251777 pam_ssh_agent_auth does not work with gnome-keyring-daemon or ssh-agent
00 #1252844 CVE-2015-6563 openssh: Privilege separation weakness related to PAM support
00 #1252852 CVE-2015-6564 openssh: Use-after-free bug related to PAM support
00 #1252853 openssh: Use-after-free bug related to PAM support [fedora-all]
00 #1252854 openssh: Privilege separation weakness related to PAM support [fedora-all]
00 #1252861 openssh: Incorrectly set TTYs to be world-writable
00 #1252862 openssh: Incorrectly set TTYs to be world-writable [fedora-all]

Automated Test Results

Test Cases

00 Test Case OpenSSH