Lucene search
F5F5:K20911042HistoryMay 16, 2016 - 12:00 a.m.
K20911042 : OpenSSH vulnerability CVE-2015-8325
2016-05-1600:00:00
my.f5.com
38
Security Advisory Description
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demonstrated by an LD_PRELOAD environment variable. (CVE-2015-8325)
Impact
When this vulnerability is exploited, local users may be able to gain privileges on the system.
Related
ibm
ibm
fedora
fedora
[SECURITY] Fedora 23 Update: openssh-7.2p2-3.fc23
2016-04-24 20:53:40
[SECURITY] Fedora 23 Update: gsi-openssh-7.2p2-2.fc23
2016-05-24 01:40:21
[SECURITY] Fedora 24 Update: gsi-openssh-7.2p2-3.fc24
2016-05-20 17:55:09
oraclelinux
oraclelinux
openssh security and bug fix update
2017-03-27 00:00:00
openssh security, bug fix, and enhancement update
2016-11-09 00:00:00
nessus
nessus
Fedora 23 : gsi-openssh (2016-d31c00ca51)
2016-07-14 00:00:00
Scientific Linux Security Update : openssh on SL6.x i386/x86_64 (20170321)
2017-04-06 00:00:00
OracleVM 3.3 / 3.4 : openssh (OVMSA-2017-0053)
2017-03-30 00:00:00
openvas
openvas
Fedora Update for gsi-openssh FEDORA-2016-99c6bc92df
2016-06-08 00:00:00
Fedora Update for openssh FEDORA-2016-7
2016-04-25 00:00:00
Debian: Security Advisory (DSA-3550-1)
2016-04-14 00:00:00
ubuntucve
ubuntucve
CVE-2015-8325
2016-04-30 00:00:00
osv
osv
openssh - security update
2016-04-15 00:00:00
CVE-2015-8325
2016-05-01 01:59:00
redhat
redhat
(RHSA-2017:0641) Moderate: openssh security and bug fix update
2017-03-21 06:17:45
(RHSA-2016:2588) Moderate: openssh security, bug fix, and enhancement update
2016-11-03 06:07:15
f5
f5
SOL20911042 - OpenSSH vulnerability CVE-2015-8325
2016-05-16 00:00:00
alpinelinux
alpinelinux
CVE-2015-8325
2016-05-01 01:59:00
cve
cve
CVE-2015-8325
2016-05-01 01:59:00
centos
centos
openssh, pam_ssh_agent_auth security update
2016-11-25 16:01:03
openssh, pam_ssh_agent_auth security update
2017-03-24 15:38:42
cvelist
cvelist
CVE-2015-8325
2016-05-01 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 09:16:33
amazon
amazon
Medium: openssh
2016-11-18 12:30:00
debian
debian
[SECURITY] [DSA 3550-1] openssh security update
2016-04-15 17:09:09
nvd
nvd
CVE-2015-8325
2016-05-01 01:59:00
prion
prion
Design/Logic Flaw
2016-05-01 01:59:00
debiancve
debiancve
CVE-2015-8325
2016-05-01 01:59:00
symantec
symantec
SA126 : OpenSSH Vulnerabilities January/April 2016
2016-06-14 08:00:00
slackware
slackware
[slackware-security] openssh
2016-08-06 21:10:35
freebsd
freebsd
openssh -- sshd -- remote valid user discovery and PAM /bin/login attack
2016-08-01 00:00:00
aix
aix
AIX OpenSSH Vulnerability
2016-09-08 14:36:37
altlinux
altlinux
Security fix for the ALT Linux 7 package openssh version 6.7p1-alt1.M70P.3
2016-10-20 00:00:00
Security fix for the ALT Linux 6 package openssh version 6.7p1-alt1.M60P.3
2016-10-20 00:00:00
Security fix for the ALT Linux 8 package openssh version 7.2p2-alt2
2016-10-21 00:00:00
mageia
mageia
Updated openssh packages fix security vulnerability
2016-08-31 18:32:33
cloudfoundry
cloudfoundry
USN-2966-1 OpenSSH vulnerabilities | Cloud Foundry
2016-06-13 00:00:00
ubuntu
ubuntu
OpenSSH vulnerabilities
2016-05-09 00:00:00
gentoo
gentoo
OpenSSH: Multiple vulnerabilities
2016-12-07 00:00:00
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00