1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
PublicDate: 2007-10-18
Candidate: CVE-2007-3102
References:
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00214.html
https://bugzilla.redhat.com/show_bug.cgi?id=248059
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3102
Description:
Unspecified vulnerability in the linux_audit_record_event function in
OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows
remote attackers to write arbitrary characters to an audit log via a
crafted username. NOTE: some of these details are obtained from third
party information.
Ubuntu-Description:
Notes:
mdeslaur> this issue in util-linux is CVE-2008-1296
mdeslaur> I'm removing util-linux from here
Bugs:
Priority: low
Assigned-to:
upstream_openssh: not-affected (RedHat patch only)
dapper_openssh: not-affected (RedHat patch only)
edgy_openssh: not-affected (RedHat patch only)
feisty_openssh: not-affected (RedHat patch only)
gutsy_openssh: not-affected (RedHat patch only)
hardy_openssh: not-affected (RedHat patch only)
intrepid_openssh: not-affected (RedHat patch only)
devel_openssh: not-affected (RedHat patch only)
|