MiracleLinux 7 : openssh-6.6.1p1-22.el7 (AXSA:2015-787:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-787:01 advisory. SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide...

Siemens SCALANCE X-200RNA Switch Devices Improper Input Validation (CVE-2015-6563)

The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafte...

Security Bulletin: Vulnerabilities in OpenSSH affect SAN Volume Controller and Storwize Family (CVE-2015-6563 CVE-2015-6564)

Summary OpenSSH vulnerabilities were disclosed in May 2016 by the OpenSSH Project. OpenSSH is used by SAN Volume Controller and Storwize Family in its CLI. SAN Volume Controller and Storwize Family products have addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-6563 DESCRIPTION...

K17263: OpenSSH vulnerabilities CVE-2015-6563 and CVE-2015-6564

Security Advisory Description CVE-2015-6563 The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction...

Security Bulletin: Vulnerabilities in OpenSSH affect the IBM FlashSystem models 840 and 900

Summary There are vulnerabilities in OpenSSH to which the IBM® FlashSystem™ 840 and FlashSystem 900 are susceptible. An exploit of these vulnerabilities CVE-2015-6563 and CVE-2015-6564 could allow a remote attacker to bypass security restrictions to gain elevated privileges or conduct an...

SUSE: Security Advisory (SUSE-SU-2015:1695-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:1581-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:1544-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: Vulnerabilities in OpenSSH affect the IBM FlashSystem model V840

Summary There are vulnerabilities in OpenSSH to which the IBM® FlashSystem™ V840 is susceptible. An exploit of these vulnerabilities CVE-2015-6563 and CVE-2015-6564 could allow a remote attacker to bypass security restrictions to gain elevated privileges or conduct an impersonation attack...

Security Bulletin: Fixes for Multiple Security Vulnerabilities in IBM Security Identity Manager Virtual Appliance available

Summary There are multiple security vulnerabilities in various components used by IBM Security Identity Manager Virtual Appliance Vulnerability Details CVEID: CVE-2015-5352 DESCRIPTION: OpenSSH could allow a remote authenticated attacker to bypass security restrictions, caused by an error when...

Security Bulletin: IBM Security Access Manager appliances are affected by vulnerabilities in OpenSSH (CVE-2015-5352, CVE-2015-6563, CVE-2015-6564)

Summary Vulnerabilities have been identified in OpenSSH. IBM Security Access Manager appliances use OpenSSH and are affected by these vulnerabilities. Vulnerability Details CVEID: CVE-2015-5352 DESCRIPTION: OpenSSH could allow a remote authenticated attacker to bypass security restrictions, cause...

Security Bulletin: Vulnerabilities in Open Source openssh affect IBM Security Identity Governance Appliance (CVE-2015-5352, CVE-2015-6563, CVE-2015-6564 )

Summary IBM Security Identity Governance 5.2.1 appliances are affected by a vulnerability in openssh. Vulnerability Details CVEID: CVE-2015-5352 DESCRIPTION: OpenSSH could allow a remote authenticated attacker to bypass security restrictions, caused by an error when making connections after...

Security Bulletin: Vulnerabilities in OpenSSH affect IBM Security Network Protection (CVE-2015-5352, CVE-2015-6563, and CVE-2015-6564)

Summary Security vulnerabilities have been discovered in OpenSSH, which is used by IBM Security Network Protection. Vulnerability Details CVEID: CVE-2015-5352 DESCRIPTION: OpenSSH could allow a remote authenticated attacker to bypass security restrictions, caused by an error when making connectio...

Security fix for the ALT Linux 6 package openssh version 6.7p1-alt1.M60P.4

6.7p1-alt1.M60P.4 built Nov. 8, 2016 Gleb Fotengauer-Malinovskiy in task 172047 Nov. 8, 2016 Gleb Fotengauer-Malinovskiy - Backported upstream fixes for CVE-2015-5352, CVE-2015-6563, CVE-2015-6564...

Security fix for the ALT Linux 7 package openssh version 6.7p1-alt1.M70P.4

6.7p1-alt1.M70P.4 built Nov. 8, 2016 Gleb Fotengauer-Malinovskiy in task 172046 Nov. 8, 2016 Gleb Fotengauer-Malinovskiy - Backported upstream fixes for CVE-2015-5352, CVE-2015-6563, CVE-2015-6564...

Scientific Linux Security Update : openssh on SL6.x i386/x86_64 (20160510)

Security Fixes : - It was found that the OpenSSH client did not properly enforce the ForwardX11Timeout setting. A malicious or compromised remote X application could possibly use this flaw to establish a trusted connection to the local X server, even if only untrusted X11 forwarding was requested...

F5 Networks BIG-IP : OpenSSH vulnerabilities (K17263)

CVE-2015-6563 The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to...

openssh, pam_ssh_agent_auth security update

CentOS Errata and Security Advisory CESA-2016:0741 An update for openssh is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

RedHat Update for openssh RHSA-2016:0741-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 201512-04

Gentoo Linux Local Security Checks GLSA 201512-04 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...