openssh security, bug fix and enhancement update

6.6.1p1-11 + 0.9.3-9 - fix direction in CRYPTOSESSION audit message 1171248 6.6.1p1-10 + 0.9.3-9 - add new option GSSAPIEnablek5users and disable using /.k5users by default CVE-2014-9278 1169843 6.6.1p1-9 + 0.9.3-9 - log via monitor in chroots without /dev/log 1083482 6.6.1p1-8 + 0.9.3-9 - increa...

elinks security update

0.12-0.21.pre5 - do not delegate GSSAPI credentials CVE-2012-4545...

Fedora 17 : elinks-0.12-0.29.pre5.fc17 (2013-0265)

do not delegate GSSAPI credentials CVE-2012-4545 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

OpenSSH < 4.2 Multiple Vulnerabilities

According to its banner, the version of OpenSSH installed on the remote host has the following vulnerabilities : - X11 forwarding may be enabled unintentionally when multiple forwarding requests are made on the same session, or when an X11 listener is orphaned after a session goes away...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods, which could cause those credentials to be exposed to...

PT-2005-3678 · Openssh +2 · Openssh +2

Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 4.2 Description: The issue allows GSSAPI credentials to be delegated to clients who log in using non-GSSAPI methods when GSSAPIDelegateCredentials is enabled. This could cause those credentials to be exposed to...