Back to bug 1298033

Who When What Removed Added
Huzaifa S. Sidhpurwala 2016-01-13 04:06:52 UTC CC security-response-team
Red Hat Bugzilla 2016-01-13 04:06:52 UTC Doc Type --- Bug Fix
Huzaifa S. Sidhpurwala 2016-01-13 04:07:41 UTC Blocks 1298034
Huzaifa S. Sidhpurwala 2016-01-13 14:21:29 UTC Depends On 1298217, 1298218
Tomas Hoger 2016-01-13 14:28:51 UTC Summary EMBARGOED CVE-2016-0778 OpenSSH: OpenSSH Client buffer-overflow when using roaming connections EMBARGOED CVE-2016-0778 OpenSSH: Client buffer-overflow when using roaming connections
Whiteboard impact=low,public=no,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-5/openssh=notaffected,rhel-6/openssh=new,rhel-7/openssh=new,fedora-all/openssh=new impact=low,public=20160114,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/openssh=notaffected,rhel-5/openssh=notaffected,rhel-6/openssh=notaffected,rhel-7/openssh=affected,fedora-all/openssh=affected
Martin Prpič 2016-01-14 15:20:18 UTC Summary EMBARGOED CVE-2016-0778 OpenSSH: Client buffer-overflow when using roaming connections CVE-2016-0778 OpenSSH: Client buffer-overflow when using roaming connections
Martin Prpič 2016-01-14 15:20:21 UTC Group security, qe_staff
Martin Prpič 2016-01-14 15:20:38 UTC Depends On 1298630
Norman Sardella 2016-01-14 15:54:50 UTC CC sardella
Martin Prpič 2016-01-14 16:12:04 UTC Doc Text A buffer overflow flaw was found in the way the OpenSSH client roaming feature was implemented. A malicious server could potentially use this flaw to execute arbitrary code on a successfully authenticated OpenSSH client if that client used certain non-default configuration options.
Christoph Erhardt 2016-01-14 16:53:31 UTC CC fedora
Pat Riehecky 2016-01-14 17:50:58 UTC CC riehecky
Tomas Hoger 2016-01-14 19:14:41 UTC Fixed In Version openssh 7.1p2
Tomas Hoger 2016-01-14 20:54:34 UTC Status NEW CLOSED
Resolution --- ERRATA
Last Closed 2016-01-14 15:54:34 UTC
Salvatore Bonaccorso 2016-01-14 21:28:24 UTC CC carnil
Jay Shin 2016-01-15 06:42:20 UTC CC jaeshin
Link ID Red Hat Knowledge Base (Article) 2123781
Jay Shin 2016-01-15 06:42:41 UTC Link ID Red Hat Knowledge Base (Solution) 2126451
Tomas Hoger 2016-01-15 07:42:09 UTC Whiteboard impact=low,public=20160114,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/openssh=notaffected,rhel-5/openssh=notaffected,rhel-6/openssh=notaffected,rhel-7/openssh=affected,fedora-all/openssh=affected impact=low,public=20160114,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/openssh=notaffected,rhel-5/openssh=notaffected,rhel-6/openssh=notaffected,rhel-7/openssh=affected,fedora-all/openssh=affected,fedora-all/gsi-openssh=affected,epel-7/gsi-openssh=affected
Tomas Hoger 2016-01-15 07:42:17 UTC CC mattias.ellert
Tomas Hoger 2016-01-15 07:43:02 UTC Depends On 1298817
Tomas Hoger 2016-01-15 07:43:12 UTC Depends On 1298818
Ján Rusnačko 2016-01-15 08:19:57 UTC CC jrusnack
Whiteboard impact=low,public=20160114,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/openssh=notaffected,rhel-5/openssh=notaffected,rhel-6/openssh=notaffected,rhel-7/openssh=affected,fedora-all/openssh=affected,fedora-all/gsi-openssh=affected,epel-7/gsi-openssh=affected impact=low,public=20160114,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/openssh=notaffected,rhel-5/openssh=notaffected,rhel-6/openssh=notaffected,rhel-7/openssh=affected,fedora-all/openssh=affected,fedora-all/gsi-openssh=affected,epel-7/gsi-openssh=affected,cwe=CWE-122
Slawomir Czarko 2016-01-18 10:01:57 UTC CC slawomir
Vladislav Grigoryev 2016-01-19 06:29:16 UTC CC arcfi
Tomas Mraz 2016-02-09 08:25:16 UTC CC tmraz
Product Security DevOps Team 2019-09-29 13:42:36 UTC Whiteboard impact=low,public=20160114,reported=20160113,source=distros,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,rhel-4/openssh=notaffected,rhel-5/openssh=notaffected,rhel-6/openssh=notaffected,rhel-7/openssh=affected,fedora-all/openssh=affected,fedora-all/gsi-openssh=affected,epel-7/gsi-openssh=affected,cwe=CWE-122

Back to bug 1298033