Does OpenSSH 7.0 Release affect Red Hat Enterprise Linux? (CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-6565)
Issue
- openssh: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices (CVE-2015-5600)
- openssh: Privilege separation weakness related to PAM support (CVE-2015-6563)
- openssh: Use-after-free bug related to PAM support (CVE-2015-6564)
- openssh: Incorrectly set TTYs to be world-writable (CVE-2015-6565)
Environment
- Red Hat Enterprise Linux 7
- Red Hat Enterprise Linux 6
- Red Hat Enterprise Linux 5
- Red Hat Enterprise Linux 4
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.