FEDORA-2016-cce03cc497

security update in Fedora 24 for openssh

Status: stable 3 years ago

Security fix for CVE-2015-8325: ignore PAM environment vars when UseLogin=yes.

Comments 7

This update has been submitted for testing by jjelen.

This update has been pushed to testing.

Seems to work fine.

karma: +1 critpath: +1

Works great! LGTM! =)

karma: +1

This update has been submitted for stable by bodhi.

karma: +1 critpath: +1 #1328012: +1 #1328013: +1 OpenSSH: +1

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 2

0+1 #1328012 CVE-2015-8325 openssh: privilege escalation via user's PAM environment and UseLogin=yes
0+1 #1328013 CVE-2015-8325 openssh: ignore PAM environment vars when UseLogin=yes [fedora-all]

Automated Test Results

Test Cases

0+1 Test Case OpenSSH