Security update for openssh
SUSE Security Update: Security update for openssh
This collective security update of openssh fixed multiple
security issues:
* memory exhaustion in gssapi due to integer overflow
(bnc#756370, CVE-2011-5000)
* forced command option information leak (bnc#744643,
CVE-2012-0814)
https://bugzilla.novell.com/709782
https://bugzilla.novell.com/744643
https://bugzilla.novell.com/756370
http://download.suse.com/patch/finder/?keywords=1433a415c626f2bfb25c692b714ebf1c
| Announcement ID: | SUSE-SU-2012:1042-1 |
| Rating: | low |
| References: | #709782 #744643 #756370 |
| Affected Products: |
An update that contains security fixes can now be installed.
Description:
This collective security update of openssh fixed multiple
security issues:
* memory exhaustion in gssapi due to integer overflow
(bnc#756370, CVE-2011-5000)
* forced command option information leak (bnc#744643,
CVE-2012-0814)
Package List:
- SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc ppc64 s390x x86_64):
- openssh-5.1p1-41.12.8
- SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64):
- openssh-askpass-5.1p1-41.12.8
- SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):
- openssh-5.1p1-41.12.8
- openssh-askpass-5.1p1-41.12.8