source: projects/web/trunk/errata/6x/20180108-4.dat @ 11347

Revision 11347, 1.4 KB checked in by iwamoto, 6 years ago (diff)

20180108-1; kernel
20180108-2: elfutils
20180108-3: openssl
20180108-4: openssh
Line 
1<date>
22018,01,08
3
4<title>
5openssh にセキュリティホール
6
7<target>
86.5/i386, 6.5/x86_64
9
10<url>
11http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15906
12https://www.openssh.com/security.html
13
14<info>
15openssh (sftp-server) に問題が発見されました。<br/>
16sftp-server.c にて Read-Onlyモード でも書き込み操作をきちんと排除しておらず、攻撃者にゼロ長のファイルを作成することを許す可能性があります。<br/>
17(CVE-2017-15906)<br/>
18<br/>
19
20<directory>
21Vine-6.5/updates/RPMS/i386
22Vine-6.5/updates/RPMS/x86_64
23
24<update>
25 [ size ] [ SHA1 checksum ]                        [ file name ]
26  1535720 29834c93b1c840837aacaea987a634abff8eb3d6 openssh-7.2p2-3vl6.src.rpm
27
28   591533 e321e883309ab2c4af417dcd5ed2c7de53d9f943 openssh-7.2p2-3vl6.i686.rpm
29    19570 df17749a1f243eeefa748540615bfe7a63438df2 openssh-askpass-gnome-7.2p2-3vl6.i686.rpm
30  1157703 0eef93abb80eedd64d8dc4a5574f477fd9ff5b64 openssh-clients-7.2p2-3vl6.i686.rpm
31   473949 9a0632f65216ad2d74d0d0a3695c69e09cb23e4a openssh-server-7.2p2-3vl6.i686.rpm
32
33   532088 0cec8042ec9ca04359c3550346044e8e0b8e2aa5 openssh-7.2p2-3vl6.x86_64.rpm
34    19633 2aeccc8a738c153a722a6d8e086afdce7daac589 openssh-askpass-gnome-7.2p2-3vl6.x86_64.rpm
35  1014382 c2cb4ef4c851040a22c33bce035be19fab6d1e32 openssh-clients-7.2p2-3vl6.x86_64.rpm
36   416868 9c14cb0681313f0c3adbe09ac5ae9440aa09321a openssh-server-7.2p2-3vl6.x86_64.rpm
Note: See TracBrowser for help on using the repository browser.