DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 2nd July 2024
Eric Eric is offline
User
 
Join Date: Sep 2008
Posts: 15
Default RCE in OpenSSH

https://www.qualys.com/2024/07/01/cv...egresshion.txt
Reply With Quote
  #2   (View Single Post)  
Old 2nd July 2024
blackhole's Avatar
blackhole blackhole is offline
VPN Cryptographer
 
Join Date: Mar 2014
Posts: 339
Default

Interesting one thanks.

Quote:
This vulnerability is exploitable remotely on glibc-based Linux systems,
where syslog() itself calls async-signal-unsafe functions
(for example,
malloc() and free()): an unauthenticated remote code execution as root,
because it affects sshd's privileged code, which is not sandboxed and
runs with full privileges. We have not investigated any other libc or
operating system; but OpenBSD is notably not vulnerable, because its
SIGALRM handler calls syslog_r(), an async-signal-safer version of
syslog() that was invented by OpenBSD in 2001.
I'm not clear if that was actually a regression or just the removal of redundant code / an oversight as it would not affect OpenBSD regardless.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenSSH 7.0 has been released. e1-531g News 0 11th August 2015 08:03 PM
OpenSSH 5.7 released J65nko News 0 25th January 2011 08:16 PM
OpenSSH 5.5 release J65nko News 0 27th April 2010 11:26 PM
OpenSSH 5.4 Release J65nko News 0 9th March 2010 08:48 PM
What is the best kind of OpenSSH? php111 Other OS 3 3rd June 2008 10:32 PM


All times are GMT. The time now is 01:15 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick