Bug 987483
Summary: | [abrt] openssh-server-6.2p2-3.fc19: _IO_vfprintf_internal: Process /usr/sbin/sshd was killed by signal 11 (SIGSEGV) | ||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Craig A Martin <craig9384> | ||||||||||||||||||||||
Component: | openssh | Assignee: | Petr Lautrbach <plautrba> | ||||||||||||||||||||||
Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||||||||||||||||||
Severity: | unspecified | Docs Contact: | |||||||||||||||||||||||
Priority: | unspecified | ||||||||||||||||||||||||
Version: | 19 | CC: | mattias.ellert, mdunphy, mgrepl, plautrba, tmraz | ||||||||||||||||||||||
Target Milestone: | --- | ||||||||||||||||||||||||
Target Release: | --- | ||||||||||||||||||||||||
Hardware: | x86_64 | ||||||||||||||||||||||||
OS: | Unspecified | ||||||||||||||||||||||||
Whiteboard: | abrt_hash:c941273b61c307ca39cce796824d4c229d84dd61 | ||||||||||||||||||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||||||||||||||||||
Doc Text: | Story Points: | --- | |||||||||||||||||||||||
Clone Of: | Environment: | ||||||||||||||||||||||||
Last Closed: | 2013-08-16 08:10:31 UTC | Type: | --- | ||||||||||||||||||||||
Regression: | --- | Mount Type: | --- | ||||||||||||||||||||||
Documentation: | --- | CRM: | |||||||||||||||||||||||
Verified Versions: | Category: | --- | |||||||||||||||||||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||||||||||||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||||||||||||||||||
Embargoed: | |||||||||||||||||||||||||
Attachments: |
|
Description
Craig A Martin
2013-07-23 13:22:00 UTC
Created attachment 777318 [details]
File: backtrace
Created attachment 777319 [details]
File: cgroup
Created attachment 777320 [details]
File: core_backtrace
Created attachment 777321 [details]
File: dso_list
Created attachment 777322 [details]
File: environ
Created attachment 777323 [details]
File: limits
Created attachment 777324 [details]
File: maps
Created attachment 777325 [details]
File: open_fds
Created attachment 777326 [details]
File: proc_pid_status
Created attachment 777327 [details]
File: var_log_messages
Hi, Just got this same crash today, except with openssh-server-6.2p2-5.fc19 I assume it was responding to a shady request. Has someone found a way to drop openssh remotely?! So I looked at the coredump, the stacktrace was identical to that described by nvwarr ( https://bugzilla.redhat.com/show_bug.cgi?id=977995#c15 ), even down to being triggered by the same IP from India. So this bug is almost definitely the same as https://bugzilla.redhat.com/show_bug.cgi?id=977995 Hi Michael Thanks for taking an interest. I agree that the ssh crashes seem to be triggered by external "attacks" over the internet. Absolutely nothing was running on my system when they occurred and no one I know was trying to log in. My ssh server is very secure through hosts.deny so no one got in. My IP address is not visible on the internet so the attacks (a least the first one) are probably random. I am not sure where attacks that are crashing the ssh server are coming from but one from China keeps trying (178.19.74.218.broad.hz.zj.dynamic.163data.com.cn) Hi Craig, Yes I too am denying ALL:ALL, so no intrusion. Random attempts sounds right, it's just part of the standard scanning for IPv4 services. A segfault in a network service always instils a sense of paranoia as it's hard to know if it's an exploitable problem without some deep digging. It doesn't crash on any request as I can shell in from a whilelisted IP without any issues, so it must be something special about the request being made. Agreed. It's the issue of tcp_wrappers library. Please update to the latest https://admin.fedoraproject.org/updates/tcp_wrappers-7.6-75.fc19 *** This bug has been marked as a duplicate of bug 977995 *** |