Create an account

Subscribe to LWN

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

openssh: inappropriate use of trusted cookies

Package(s):

gnome-ssh-askpass openssh

CVE #(s):

CVE-2007-4752

Created:

September 11, 2007

Updated:

August 25, 2008

Description:

OpenSSH in versions prior 4.7 could use a trusted X11 cookie if the creation of an untrusted cookie failed.

Alerts:

CentOS	CESA-2008:0855	2008-08-22
Red Hat	RHSA-2008:0855-01	2008-08-22
Debian	DSA-1576-1	2008-05-14
Ubuntu	USN-566-1	2008-01-09
Mandriva	MDKSA-2007:236	2007-12-04
Gentoo	200711-02	2007-11-01
Fedora	FEDORA-2007-715	2007-10-15
Foresight	FLEA-2007-0055-1	2007-09-17
Slackware	SSA:2007-255-01	2007-09-13
rPath	rPSA-2007-0181-1	2007-09-10

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds