Does OpenSSH 7.0 Release affect Red Hat Enterprise Linux? (CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-6565)

Solution Verified - Updated -

Issue

  • openssh: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices (CVE-2015-5600)
  • openssh: Privilege separation weakness related to PAM support (CVE-2015-6563)
  • openssh: Use-after-free bug related to PAM support (CVE-2015-6564)
  • openssh: Incorrectly set TTYs to be world-writable (CVE-2015-6565)

Environment

  • Red Hat Enterprise Linux 7
  • Red Hat Enterprise Linux 6
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In