Oval Definition:	oval:org.opensuse.security:def:80098
Revision Date: 2016-01-14 Version: 1 Title: Security update for openssh (Critical) Description: This update for openssh fixes the following issues: - CVE-2016-0777: A malicious or compromised server could cause the OpenSSH client to expose part or all of the client's private key through the roaming feature (bsc#961642) - CVE-2016-0778: A malicious or compromised server could could trigger a buffer overflow in the OpenSSH client through the roaming feature (bsc#961645) This update disables the undocumented feature supported by the OpenSSH client and a commercial SSH server. Family: unix Class: patch Status: Reference(s): 961642 961645 CVE-2016-0777 CVE-2016-0778 SUSE-SU-2016:0119-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information openssh-6.2p2-0.24.1 is installed OR openssh-askpass-6.2p2-0.24.1 is installed OR openssh-askpass-gnome-6.2p2-0.24.3 is installed
BACK