- CVE-2006-5051: Fix an unsafe signal hander reported by Mark Dowd. The

signal handler was vulnerable to a race condition that could be exploited to perform a pre-authentication denial of service. On portable OpenSSH, this vulnerability could theoretically lead to pre-authentication remote code execution if GSSAPI authentication is enabled, but the likelihood of successful exploitation appears remote.
author: Colin Watson <cjwatson@debian.org> 2006-09-29 11:36:40 +0000
committer: Colin Watson <cjwatson@debian.org> 2006-09-29 11:36:40 +0000
commit: b9438bbc073e792547318c8e343923748536529c (patch)
tree: 267f9815b8386617219421d862be309b73758c6b /debian
parent: 0b228013734983ec12ddaa535d42704b5e4cee90 (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index 705a61580..6007a9d7b 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -5,6 +5,12 @@ openssh (1:4.3p2-4) UNRELEASED; urgency=high
    - CVE-2006-4924: Fix a pre-authentication denial of service found by
      Tavis Ormandy, that would cause sshd(8) to spin until the login grace
      time expired (closes: #389995).
+    - CVE-2006-5051: Fix an unsafe signal hander reported by Mark Dowd. The
+      signal handler was vulnerable to a race condition that could be
+      exploited to perform a pre-authentication denial of service. On
+      portable OpenSSH, this vulnerability could theoretically lead to
+      pre-authentication remote code execution if GSSAPI authentication is
+      enabled, but the likelihood of successful exploitation appears remote.
  * Read /etc/default/locale as well as /etc/environment (thanks, Raphaël
    Hertzog; closes: #369395).
author	Colin Watson <cjwatson@debian.org>	2006-09-29 11:36:40 +0000
committer	Colin Watson <cjwatson@debian.org>	2006-09-29 11:36:40 +0000
commit	b9438bbc073e792547318c8e343923748536529c (patch)
tree	267f9815b8386617219421d862be309b73758c6b /debian
parent	0b228013734983ec12ddaa535d42704b5e4cee90 (diff)