Launchpad CVE tracker

CVE 2006-5051

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.

See the

CVE page on Mitre.org for more details.

References

FREEBSD: FreeBSD-SA-06:22.openssh
REDHAT: RHSA-2006:0698
REDHAT: RHSA-2006:0697
UBUNTU: USN-355-1
BID: 20241
SECTRACK: 1016940
SECUNIA: 22158
SECUNIA: 22173
SECUNIA: 22183
SECUNIA: 22196
SECUNIA: 22236
MLIST: [freebsd-security] 200...
DEBIAN: DSA-1189
FREEBSD: FreeBSD-SA-06:22
CERT-VN: VU#851340
SECUNIA: 22270
SECUNIA: 22208
SECUNIA: 22245
CONFIRM: http://www.arkoon.fr/u...
OPENBSD: [2.9] 015: SECURITY FI...
SECUNIA: 22352
CONFIRM: http://support.avaya.c...
OPENPKG: OpenPKG-SA-2006.022
SECUNIA: 22362
SUSE: SUSE-SA:2006:062
SECUNIA: 22495
CONFIRM: http://www.arkoon.fr/u...
SGI: 20061001-01-P
SECUNIA: 22487
GENTOO: GLSA-200611-06
SECUNIA: 22823
DEBIAN: DSA-1212
SECUNIA: 22926
CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
SECUNIA: 23680
CONFIRM: http://docs.info.apple...
SECUNIA: 24479
MLIST: [security-announce] 20...
SECUNIA: 24805
CONFIRM: http://openssh.org/txt...
OSVDB: 29264
CONFIRM: http://sourceforge.net...
APPLE: APPLE-SA-2007-03-13
SECUNIA: 24799
MANDRIVA: MDKSA-2006:179
CERT: TA07-072A
VUPEN: ADV-2006-4018
VUPEN: ADV-2006-4329
VUPEN: ADV-2007-0930
VUPEN: ADV-2007-1332
MLIST: [openssh-unix-dev] 200...
SLACKWARE: SSA:2006-272-02
XF: openssh-signal-handler...
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2006-5051

Related bugs

References