wallenstein/void-packages
1
0
Fork 0
mirror of https://github.com/void-linux/void-packages.git synced 2025-09-09 05:23:02 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
void-packages/srcpkgs/openssh
History
Christian Neukirchen 0ea48ddd5e openssh: security fix for CVE-2015-8325. 
> Subject: ignore PAM environment vars when UseLogin=yes
>
> If PAM is configured to read user-specified environment variables
> and UseLogin=yes in sshd_config, then a hostile local user may
> attack /bin/login via LD_PRELOAD or similar environment variables
> set via PAM.
>
> CVE-2015-8325, found by Shayan Sadigh, via Colin Watson
2016-06-06 13:34:27 +02:00
..
files
patches
template