Red Hat Bugzilla – Bug 711170
pam_ssh: privileges not dropped properly before executing ssh-agent
Last modified: 2015-07-31 02:41:20 EDT
It was found that pam_ssh, PAM module for use with SSH keys and ssh-agent,
did not properly drop root SGID privileges prior executing the ssh-agent
authentication agent. A local attacker could use this flaw to potentially
escalate their privileges.
This issue affects the versions of the pam_ssh package, as present within
EPEL-4 and EPEL-5 repositories.
This issue affects the versions of the pam_ssh package, as shipped with
Fedora release of 13, 14, and 15. Please schedule an update.
Created pam_ssh tracking bugs for this issue
Affects: epel-all [bug 711171]
Affects: fedora-all [bug 711172]