all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Debian Security Advisory 5724-1

Add to bookmarks
July 1, 2024, 3:08 p.m. |

Packet Storm packetstormsecurity.com

Debian Linux Security Advisory 5724-1 - The Qualys Threat Research Unit (TRU) discovered that OpenSSH, an implementation of the SSH protocol suite, is prone to a signal handler race condition. If a client does not authenticate within LoginGraceTime seconds (120 by default), then sshd's SIGALRM handler is called asynchronously and calls various functions that are not async-signal-safe. A remote unauthenticated attacker can take advantage of this flaw to execute arbitrary code with root privileges. This flaw affects sshd in its …

advisory authenticate called client debian debian linux security default functions implementation linux linux security openssh protocol qualys race race condition research security security advisory signal ssh sshd ssh protocol threat threat research

Visit resource

More from packetstormsecurity.com / Packet Storm

SecTemplates.com Releases Incident Response Program Pack 1.0 1 day, 9 hours ago | packetstormsecurity.com
com incident incident response program +2
Gentoo Linux Security Advisory 202407-09 1 day, 12 hours ago | packetstormsecurity.com
advisory can code code execution +11
WordPress FooGallery 2.4.16 Cross Site Scripting 1 day, 12 hours ago | packetstormsecurity.com
cross site scripting persistent plugin scripting +3
WordPress Gallery 2.3.6 Cross Site Scripting 1 day, 12 hours ago | packetstormsecurity.com
cross site scripting gallery persistent scripting +3
Ubuntu Security Notice USN-6851-2 1 day, 12 hours ago | packetstormsecurity.com
discovery enable fail fixes +9
Ubuntu Security Notice USN-6844-2 1 day, 12 hours ago | packetstormsecurity.com
configuration daemon discovery fixes +11
Red Hat Security Advisory 2024-4212-03 1 day, 13 hours ago | packetstormsecurity.com
advisory enterprise golang linux +5
Red Hat Security Advisory 2024-4211-03 1 day, 13 hours ago | packetstormsecurity.com
advisory enterprise free issues +12
Red Hat Security Advisory 2024-4210-03 1 day, 13 hours ago | packetstormsecurity.com
advisory denial of service directory issues +9

Jobs in InfoSec / Cybersecurity

Find Talent

Principal Software Engineer

@ Mastercard | Pune, India
View on infosec-jobs.com

Sr Principal Analyst, Security Services, Emerging Technology and Trends

@ Gartner | Remote - India
View on infosec-jobs.com

Product owner B2B & CIAM

@ Philips | Best - QX
View on infosec-jobs.com

2024-2025: Information Technology – Information Security Intern

@ Chevron | Houston 1500 Louisiana Street
View on infosec-jobs.com

2024-2025: Information Technology – Information Security Intern (Previous Intern)

@ Chevron | Houston 1500 Louisiana Street
View on infosec-jobs.com

2024-2025: Information Technology – Information Security Full Time (Previous Intern)

@ Chevron | Houston 1500 Louisiana Street
View on infosec-jobs.com