0x0@programming.dev to

Security@programming.devEnglish · 4 months ago

CVE-2024-6387: RCE in OpenSSH's server, on glibc-based Linux systems

3

0

CVE-2024-6387: RCE in OpenSSH's server, on glibc-based Linux systems

0x0@programming.dev to

Security@programming.devEnglish · 4 months ago

3

oss-sec: CVE-2024-6387: RCE in OpenSSH's server, on glibc-based Linux systems

Regression in signal handler.

This vulnerability is exploitable remotely on glibc-based Linux systems, where syslog() itself calls async-signal-unsafe functions (for example, malloc() and free()): an unauthenticated remote code execution as root, because it affects sshd’s privileged code, which is not sandboxed and runs with full privileges.

Chat

cucumberbob@programming.dev
link
fedilink
English
arrow-up
1·
4 months ago
You can read them as separate statements with the middle repeated and a logical AND between them:

If (8.5p1 <= your OpenSSH version) AND (your OpenSSH version < 9.8p1) Then you are vulnerable

It’s the same as saying if your OpenSSH version is between these two versions (including 8.5p1, but not 9.8p1), then you are vulnerable

Security@programming.dev

security@programming.dev

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !security@programming.dev

A community for discussion about cybersecurity, hacking, cybersecurity news, exploits, bounties etc.

Rules :

All instance-wide rules apply.
Keep it totally legal.
Remember the human, be civil.
Be helpful, don’t be rude.

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

5 users / day
2 users / week
2 users / month
76 users / 6 months
1 local subscriber
633 subscribers
9 Posts
16 Comments
Modlog

mods:
LinearArray@programming.dev