OpenSSH bug leaves RHEL 9 and the RHELatives vulnerable

2024-07-11 19:13

It affects the sshd daemon versions 8.7p1 and 8.8p1, which were used in Fedora 36 and 37 as well as Red Hat Enterprise Linux 9 - and of course the various RHELatives as well.

It's not long since the "RegreSSHion" OpenSSH bug, which The Register covered earlier this month and which is more formally known as CVE-2024-6387.

In other words, calling a function from somewhere it shouldn't get called from created a bug and just like the regreSSHion bug, this potentially allows remote code execution: the ability to send code to a remote machine, and then trick that machine into running your code.

Patch found in Red Hat's package of OpenSSH adds code to cleanup exit() that exposes the issue.

In other words, it looks as if some hapless coder from the IBM subsidiary introduced this bug in the company's own version of the code.

The good news is that nobody sensible will be affected by the Fedora issue, because those versions are both end of life: version 36 in May last year, and version 37 last December.

News URL

https://go.theregister.com/feed/www.theregister.com/2024/07/11/openssh_bug_in_rhel_9/

#openssh #rhel #CVE-2024-6387

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-01	CVE-2024-6387	Race Condition vulnerability in multiple products A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). network high complexity openbsd redhat suse debian canonical amazon netapp freebsd netbsd CWE-362	8.1