Oval Definition:oval:com.ubuntu.precise:def:20156564000
Revision Date:2015-08-23Version:1
Title:CVE-2015-6564 on Ubuntu 12.04 LTS (precise) - medium.
Description:Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-6564
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND The 'openssh' package in precise was vulnerable but has been fixed (note: '1:5.9p1-5ubuntu1.6').
  • BACK