[Secure-testing-team] Bug#795711: Two CVE-less issues
Moritz Muehlenhoff
jmm at debian.org
Sun Aug 16 12:02:19 UTC 2015
Source: openssh
Severity: important
Tags: security
These don't have CVE IDs assigned yet (request at
http://www.openwall.com/lists/oss-security/2015/08/11/9):
privilege separation weakness in PAM support:
https://anongit.mindrot.org/openssh.git/commit/?id=d4697fe9a28dab7255c60433e4dd23cf7fce8a8b
use-after-free in PAM support:
https://anongit.mindrot.org/openssh.git/commit/?id=5e75f5198769056089fb06c4d738ab0e5abc66f7
Cheers,
Moritz
More information about the Secure-testing-team
mailing list