Uninitialized struct field in the fix for CVE-2015-5600 causes random auth failures
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openssh (Ubuntu) |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Precise |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Trusty |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Vivid |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Wily |
Fix Released
|
Undecided
|
Marc Deslauriers |
Bug Description
In Ubuntu 12.04, the fix for CVE-2015-5600[1] just hit upstream in package openssh-
Reproducing:
Install openssh-
Add an authentication mechanism that uses the keyboard-
Attempt to log in via the above mechanism. Instead of consistently prompting the user for input, it will sometimes fall straight through to password auth because the devices_done bit field is initialized with garbage data.
Downgrading to openssh-
[1]: http://
CVE References
Changed in openssh (Ubuntu Precise): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in openssh (Ubuntu Trusty): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in openssh (Ubuntu Vivid): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in openssh (Ubuntu Wily): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in openssh (Ubuntu Precise): | |
status: | New → Confirmed |
Changed in openssh (Ubuntu Trusty): | |
status: | New → Confirmed |
Changed in openssh (Ubuntu Vivid): | |
status: | New → Confirmed |
Changed in openssh (Ubuntu Wily): | |
status: | New → Confirmed |
The attachment "CVE-2015- 5600_initialize _struct. patch" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team.
[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.]