Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

Gentoo: 200512-13 High: Dropbear Privilege Escalation Threat

gentoo
Calendar Grey December 23, 2005
Scroller Gentoo
Gentoo GLSA 202310-15: Critical urgency security notice regarding OpenSSH authentication bypass vulnerability.
A buffer overflow in Dropbear could allow authenticated users to execute arbitrary code as the root user.

Summary

Gentoo Linux Security Advisory GLSA 200512-13 https://security.gentoo.org/ Severity: High Title: Dropbear: Privilege escalation Date: December 23, 2005 Bugs: #116006 ID: 200512-13

Synopsis ======= A buffer overflow in Dropbear could allow authenticated users to execute arbitrary code as the root user.
Background ========= Dropbear is an SSH server and client with a small memory footprint.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/dropbear < 0.47 >= 0.47
========== Under certain conditions Dropbear could fail to allocate a sufficient amount of memory, possibly resulting in a buffer overflow.
Impact ===== By sending specially crafted data ...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround