[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2013-165 ---- openssh, pam_ssh_agent_auth

ID: oval:org.secpod.oval:def:1600205Date: (C)2016-05-19   (M)2022-10-10
Class: PATCHFamily: unix




Due to the way the pam_ssh_agent_auth PAM module was built, the glibc"s error function was called rather than the intended error function in pam_ssh_agent_auth to report errors. As these two functions expect different arguments, it was possible for an attacker to cause an application using pam_ssh_agent_auth to crash, disclose portions of its memory or, potentially, execute arbitrary code

Platform:
Amazon Linux AMI
Product:
openssh
pam_ssh_agent_auth
Reference:
ALAS-2013-165
CVE-2012-5536
CVE    1
CVE-2012-5536
CPE    2
cpe:/o:amazon:linux
cpe:/a:openbsd:openssh

© SecPod Technologies