CVE-2015-6564

2015-08-24T01:59:00
ID CVE-2015-6564
Type cve
Reporter cve@mitre.org
Modified 2019-03-26T17:29:00

Description

Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.