LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Interview: Kristen Carlson Accardi

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

gnome-ssh-askpass, openssh: privilege escalation

Package(s):gnome-ssh-askpass CVE #(s):CVE-2008-1657
Created:April 7, 2008 Updated:May 7, 2008
Description:

From the Gentoo advisory:

OpenSSH will execute the contents of the ".ssh/rc" file even when the "ForceCommand" directive is enabled in the global sshd_config (CVE-2008-1657).

Alerts:
rPath rPSA-2008-0139-1 2008-04-04
Gentoo 200804-03 2008-04-05
SuSE SUSE-SR:2008:009 2008-04-11
Mandriva MDVSA-2008:098 2007-05-06
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.