Bug 8922 - OpenSSH scp Command Line Shell Command Injection
Summary: OpenSSH scp Command Line Shell Command Injection
Status: CLOSED FIXED
Alias: None
Product: Sisyphus
Classification: Development
Component: openssh (show other bugs)
Version: unstable
Hardware: all Linux
: P2 critical
Assignee: Gleb F-Malinovskiy
QA Contact: qa-sisyphus
URL: http://secunia.com/advisories/18579/
Keywords:
: 10001 (view as bug list)
Depends on:
Blocks:
 
Reported: 2006-01-24 16:32 MSK by Igor Zubkov
Modified: 2006-11-24 15:17 MSK (History)
6 users (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Dmitry V. Levin 2006-01-24 16:51:55 MSK
scp как наследник rcp морально устарел, рекомендую переходить на sftp или rsync.

Вот ответ, который дал Markus Friedl:
"it's inherited from rcp, it's more or less the 'way it works'. if there is a
simple way to fix it without breaking scp completely, then we can include it in
a future release, but so far i consider this a minor problem."
Comment 2 Igor Zubkov 2006-03-25 15:31:38 MSK
Может тогда вынести scp в отдельный пакет с замечание "ни в кое случае не ставить"?
Comment 3 Igor Zubkov 2006-09-14 15:06:00 MSD
*** Bug 10001 has been marked as a duplicate of this bug. ***
Comment 5 Dmitry V. Levin 2006-09-14 16:51:56 MSD
Раз кто-то не поленился сделать патч
(https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168167),
я его посмотрю и приложу.
Comment 6 Michael Shigorin 2006-11-24 13:05:43 MSK
* Tue Oct 03 2006 Dmitry V. Levin <ldv@altlinux.org> 3.6.1p2-alt8
- Backported upstream fixes for:
  + sshd connection consumption vulnerability
    (CVE-2004-2069: low, remote, active),
  + scp local arbitrary command execution vulnerability
    (CVE-2006-0225: high, local, active),
    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  + sshd signal handler race condition
    (CVE-2006-5051: none, remote, active),
  + CRC compensation attack detector DoS
    (CVE-2006-4924: low, remote, active),
  + client NULL dereference on protocol error
    (CVE-2006-4925: low, remote, passive).
- Applied RH patch to plug several sftp memleaks.
Comment 7 Igor Zubkov 2006-11-24 15:16:52 MSK
Извиняюсь, забыл закрыть.