Bug 240909

Summary: memory leak fixed in RHEL3 but present in RHEL4
Product: Red Hat Enterprise Linux 4 Reporter: Chris Stankaitis <cstankaitis>
Component: opensshAssignee: Tomas Mraz <tmraz>
Status: CLOSED ERRATA QA Contact: Brian Brock <bbrock>
Severity: urgent Docs Contact:
Priority: medium    
Version: 4.0CC: tao
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: RHSA-2007-0703 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-11-15 14:58:09 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Chris Stankaitis 2007-05-22 19:52:37 UTC 
Description of problem:

A memory leak which was patched in RHEL3 - Redhat Bugzilla #151080 and has been
included in openssh 3.6.1p2 moving forward also apears to be present in RHEL4.  

Checking the code of the patch against current srpm of RHEL4 openssh it does not
appear that the contents of the Red Hat - openssh-3.6.1p2-sftp-memleak.patch was
accepted upstream and/or included in the RHEL4 3.9p1 branch code.

The memory leak is causing a significant production impact, and is hindering our
ability to do business without constant attention from our Network Operations
team, and constant service restarts to clear the consumed memory.

Version-Release number of selected component (if applicable):

openssh-3.9p1-8.RHEL4.17.1.x86_64
openssh-server-3.9p1-8.RHEL4.17.1.x86_64
openssh-clients-3.9p1-8.RHEL4.17.1.x86_64

How reproducible:

Always
Comment 1 Chris Stankaitis 2007-05-28 14:20:13 UTC 
Hi Tomas can I get an update regarding this bug? it has significant impact for us.
Comment 3 RHEL Program Management 2007-05-28 15:24:22 UTC 
This request was evaluated by Red Hat Product Management for inclusion in a Red
Hat Enterprise Linux maintenance release.  Product Management has requested
further review of this request by Red Hat Engineering, for potential
inclusion in a Red Hat Enterprise Linux Update release for currently deployed
products.  This request is not yet committed for inclusion in an Update
release.
Comment 6 Chris Stankaitis 2007-07-11 17:13:10 UTC 
We also may be deploying this same system in RHEL5 in the near future, will you
be checking this fix against the current RHEL5 OpenSSH as well?  I would hate to
be in the same boat in less then a year from now having to go through this again.
Comment 7 Tomas Mraz 2007-07-11 18:26:24 UTC 
As the fix was backported from openssh-4.3p2 - RHEL5 is OK.
Comment 13 errata-xmlrpc 2007-11-15 14:58:09 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2007-0703.html