3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
71.8%
Issue Overview:
A denial of service flaw was found in the OpenSSH GSSAPI authentication implementation. A remote, authenticated user could use this flaw to make the OpenSSH server daemon (sshd) use an excessive amount of memory, leading to a denial of service. GSSAPI authentication is enabled by default (“GSSAPIAuthentication yes” in “/etc/ssh/sshd_config”). (CVE-2011-5000)
Affected Packages:
openssh
Issue Correction:
Run yum update openssh to update your system.
New Packages:
i686:
openssh-ldap-5.3p1-81.17.amzn1.i686
openssh-debuginfo-5.3p1-81.17.amzn1.i686
openssh-5.3p1-81.17.amzn1.i686
openssh-server-5.3p1-81.17.amzn1.i686
openssh-clients-5.3p1-81.17.amzn1.i686
pam_ssh_agent_auth-0.9-81.17.amzn1.i686
src:
openssh-5.3p1-81.17.amzn1.src
x86_64:
openssh-server-5.3p1-81.17.amzn1.x86_64
openssh-5.3p1-81.17.amzn1.x86_64
openssh-debuginfo-5.3p1-81.17.amzn1.x86_64
openssh-clients-5.3p1-81.17.amzn1.x86_64
openssh-ldap-5.3p1-81.17.amzn1.x86_64
pam_ssh_agent_auth-0.9-81.17.amzn1.x86_64
Red Hat: CVE-2011-5000
Mitre: CVE-2011-5000
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 1 | i686 | openssh-ldap | < 5.3p1-81.17.amzn1 | openssh-ldap-5.3p1-81.17.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | openssh-debuginfo | < 5.3p1-81.17.amzn1 | openssh-debuginfo-5.3p1-81.17.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | openssh | < 5.3p1-81.17.amzn1 | openssh-5.3p1-81.17.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | openssh-server | < 5.3p1-81.17.amzn1 | openssh-server-5.3p1-81.17.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | openssh-clients | < 5.3p1-81.17.amzn1 | openssh-clients-5.3p1-81.17.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | pam_ssh_agent_auth | < 0.9-81.17.amzn1 | pam_ssh_agent_auth-0.9-81.17.amzn1.i686.rpm |
Amazon Linux | 1 | x86_64 | openssh-server | < 5.3p1-81.17.amzn1 | openssh-server-5.3p1-81.17.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | openssh | < 5.3p1-81.17.amzn1 | openssh-5.3p1-81.17.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | openssh-debuginfo | < 5.3p1-81.17.amzn1 | openssh-debuginfo-5.3p1-81.17.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | openssh-clients | < 5.3p1-81.17.amzn1 | openssh-clients-5.3p1-81.17.amzn1.x86_64.rpm |