0x0@programming.dev to

Security@programming.devEnglish · 4 months ago

CVE-2024-6387: RCE in OpenSSH's server, on glibc-based Linux systems

8

31

CVE-2024-6387: RCE in OpenSSH's server, on glibc-based Linux systems

0x0@programming.dev to

Security@programming.devEnglish · 4 months ago

8

Regression in signal handler.

This vulnerability is exploitable remotely on glibc-based Linux systems, where syslog() itself calls async-signal-unsafe functions (for example, malloc() and free()): an unauthenticated remote code execution as root, because it affects sshd’s privileged code, which is not sandboxed and runs with full privileges.

Chat

rushaction@programming.dev
link
fedilink
English
arrow-up
4·
4 months ago
Because this is a regression and this particular issue was introduced in 8.5p1. So it only affects versions newer than that, up until when it was fixed in 9.8p1.

Security@programming.dev

security@programming.dev

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !security@programming.dev

A community for discussion about cybersecurity, hacking, cybersecurity news, exploits, bounties etc.

Rules :

All instance-wide rules apply.
Keep it totally legal.
Remember the human, be civil.
Be helpful, don’t be rude.

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

5 users / day
2 users / week
2 users / month
257 users / 6 months
17 local subscribers
633 subscribers
74 Posts
121 Comments
Modlog

mods:
LinearArray@programming.dev