Date: Fri, 08 Nov 2013 06:56:48 -0600 From: Bryan Drewery <bdrewery@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: Re: svn commit: r333217 - head/security/vuxml Message-ID: <527CDF90.6080809@FreeBSD.org> In-Reply-To: <201311081250.rA8CoTAw082063@svn.freebsd.org> References: <201311081250.rA8CoTAw082063@svn.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --7xogXJ8k51CajdTVOQK0DLDwm6KQKoI85 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On 11/8/2013 6:50 AM, Bryan Drewery wrote: > Author: bdrewery > Date: Fri Nov 8 12:50:28 2013 > New Revision: 333217 > URL: http://svnweb.freebsd.org/changeset/ports/333217 >=20 > Log: > - Document memory corruption in security/openssh-portable >=20 > Modified: > head/security/vuxml/vuln.xml >=20 > Modified: head/security/vuxml/vuln.xml > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D > --- head/security/vuxml/vuln.xml Fri Nov 8 12:46:34 2013 (r333216) > +++ head/security/vuxml/vuln.xml Fri Nov 8 12:50:28 2013 (r333217) > @@ -51,6 +51,51 @@ Note: Please add new entries to the beg > =20 > --> > <vuxml xmlns=3D"http://www.vuxml.org/apps/vuxml-1">; > + <vuln vid=3D"5709d244-4873-11e3-8a46-000d601460a4"> > + <topic>OpenSSH -- Memory corruption in sshd</topic> > + <affects> > + <package> > + <name>openssh-portable</name> > + <range><lt>6.4p1,1</lt></range> > + <range><ge>6.2p2,1</ge></range> > + </package> > + <package> > + <name>openssh-portable-base</name> > + <range><lt>6.4p1,1</lt></range> > + <range><ge>6.2p2,1</ge></range> > + </package> > + </affects> > + <description> > + <body xmlns=3D"http://www.w3.org/1999/xhtml">; > + <p>OpenSSH development team reports:</p> > + <blockquote cite=3D"http://www.openssh.com/txt/gcmrekey.adv">; > + <p>A memory corruption vulnerability exists in the post- > + authentication sshd process when an AES-GCM cipher > + (aes128-gcm@openssh.com or aes256-gcm@openssh.com) is > + selected during kex exchange. > + > + If exploited, this vulnerability might permit code execution > + with the privileges of the authenticated user and may > + therefore allow bypassing restricted shell/command > + configurations.</p> > + <p>Either upgrade to 6.4 or disable AES-GCM in the server > + configuration. The following sshd_config option will disable > + AES-GCM while leaving other ciphers active: > + > + Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,blow= fish-cbc,cast128-cbc,aes192-cbc,aes256-cbc > + </p> If there is a better way to note this please do modify. > + </blockquote> > + </body> > + </description> > + <references> > + <url>http://www.openssh.com/txt/gcmrekey.adv</url>; > + </references> > + <dates> > + <discovery>2013-11-07</discovery> > + <entry>2013-11-08</entry> > + </dates> > + </vuln> > + > <vuln vid=3D"f969bad7-46fc-11e3-b6ee-00269ee29e57"> > <topic>Quassel IRC -- SQL injection vulnerability</topic> > <affects> >=20 --=20 Regards, Bryan Drewery --7xogXJ8k51CajdTVOQK0DLDwm6KQKoI85 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (MingW32) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSfN+QAAoJEDXXcbtuRpfPoDsH+wfQZQPrM0oIgfTb2dZzZ8Mq k48qKN4koTD6nGBALvIR51QLQn/NoMEZETdGUkldsyc4CwvskTKYRYhI58OsTqmd yA2b7qohQpz6LQ4DQuXRmqWB9TO7MNMXj70/3oYy4v/wx+eVa5i9pqflWhHcqxDD O06+6hxgb6ph1piQD6tjLjyLmAcRbys8GGeTRMeNuawShxcAvJkTPrEp6itF30uM HPnjzj8uWfSxiupjPmEGJoT44lYv09rzoKvxnU6q6EvTq/BnOeUeX0tr0/9PsRnH eNv/c613JlGYJqrKGdvPUCO71mQp56212qRL/3l6+Un/uD1QuVRZqqB73n+vg1A= =sjTb -----END PGP SIGNATURE----- --7xogXJ8k51CajdTVOQK0DLDwm6KQKoI85--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?527CDF90.6080809>