Red Hat Customer Portal

Skip to main content

CVE-2006-5051

Impact:
Important
Public Date:
2006-09-28
Bugzilla:
208347: CVE-2006-5051 unsafe GSSAPI signal handler

The MITRE CVE dictionary describes this issue as:

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.

Find out more about CVE-2006-5051 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (openssh) RHSA-2006:0697 2006-09-29
Red Hat Enterprise Linux 3 (openssh) RHSA-2006:0697 2006-09-29
Red Hat Enterprise Linux 2.1 (openssh) RHSA-2006:0698 2006-09-29