Probable regression after rssh security update
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libssh2 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
version: v1.5 (or above)
Last week rssh package got updated to include security patch (2.3.4-
Specifically libssh2_
For the scp example in libssh2 code base, it is stuck at the _libssh2_recv() function.
(gdb) bt
#0 0x00007ffff7b908f0 in __errno_
#1 0x00007ffff7bae04c in _libssh2_recv (sock=3, buffer=0x608528, length=16384, flags=16384, abstract=0x6082e0) at /home/ching/
#2 0x00007ffff7bc38a4 in _libssh2_
#3 0x00007ffff7b9c143 in _libssh2_
#4 0x00007ffff7b9c525 in libssh2_
#5 0x000000000040143b in main (argc=5, argv=0x7fffffff
Steps to repro:
1. sudo useradd -s /usr/bin/rssh -r -N -c "test" -G testgroup test
2. sudo passwd test
3. sudo usermod -a -G rsshusers test
4. Build libssh2
5. Run scp example
./example/
Stuck and fails to read the file.
Libssh2 logs indicate rssh returned following error
insecure scp option not allowed.
This account is restricted by rssh.
Allowed commands: scp sftp
The rssh security patch is targeted for scp comands but not sure why it affects clients using libssh2.
Please could you take a look.
I have also posted the issue in rssh package discussion list.
https:/
Changed in libssh2 (Ubuntu): | |
status: | New → Fix Released |
No, 2.3.4-4+ deb8u2ubuntu0. 16.04.1 release didn't fix the issue. deb8u2ubuntu0. 16.04.1 is mainly targeted for downloading multiple files using '*' based on the issue raised by https:/ /bugs.debian. org/cgi- bin/bugreport. cgi?bug= 921655.
2.3.4-4+
In our case, we don't use scp commands directly but use libssh2 client library to do scp.
I have attached the example libssh2 code to repro the issue.