Oval Definition:	oval:org.cisecurity:def:523
Revision Date: 2016-07-01 Version: 6 Title: DSA-3550-1 -- openssh -- security update Description: Shayan Sadigh discovered a vulnerability in OpenSSH: If PAM support is enabled and the sshd PAM configuration is configured to read userspecified environment variables and the UseLogin option is enabled, a local user may escalate her privileges to root. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2015-8325 DSA-3550-1 Platform(s): Debian 8 Debian GNU/kFreeBSD 7 Debian GNU/Linux 7 Product(s): openssh Definition Synopsis Debian 7 Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND openssh is earlier than 1:6.0p1-4+deb7u4 OR Debian 8 Debian 8 is installed AND openssh is earlier than 0:6.7p1-5+deb8u2
BACK