BSA-2018-540
21341
10 July 2019
28 September 2018
Closed
Low
8.1
N/A
CVE-2016-0778
Summary Security Advisory ID : BSA-2018-540 Component : OpenSSH Revision : 2.0: Final
The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly maintain connection file descriptors, which allows remote servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by requesting many forwardings.
A malicious server could potentially use this flaw to execute arbitrary code on a successfully authenticated OpenSSH client if that client used certain non-default configuration options.
Affected Products
Brocade Fabric OS. Fixed in FOS v7.4.1d, v8.0.1, v8.1.0.
Solution
Security updates for the issue described in this advisory have been posted to the MyBroadcom web portal.
Recommended Action
Brocade recommends that all customers running the impacted version(s) install supported Brocade Fabric OS Versions.
Revision History
| Version | Change | Date |
|---|---|---|
| 1.0 | Initial Publication | September 28, 2018 |
| 2.0 | Updated for Brocade Fibre Channel Products Only | July 10, 2019 |