|Bugzilla:||208347: CVE-2006-5051 unsafe GSSAPI signal handler|
The MITRE CVE dictionary describes this issue as:
Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
Red Hat security errata
|Red Hat Enterprise Linux version 2.1 (openssh)||RHSA-2006:0698||September 29, 2006|
|Red Hat Enterprise Linux version 3 (openssh)||RHSA-2006:0697||September 29, 2006|
|Red Hat Enterprise Linux version 4 (openssh)||RHSA-2006:0697||September 29, 2006|
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.