Fluid Attacks Database

Description

The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	openssh	>=0 <1:7.2p1-1	1:7.2p1-1
debian 14	openssh	>=0 <1:7.2p1-1	1:7.2p1-1
debian 13	openssh	>=0 <1:7.2p1-1	1:7.2p1-1
debian 12	openssh	>=0 <1:7.2p1-1	1:7.2p1-1
rpm rhel7	openssh	<0:6.6.1p1-25.el7_2	0:6.6.1p1-25.el7_2
rpm rhel5	openssh	-	-
rpm rhel6	openssh	<0:5.3p1-117.el6	0:5.3p1-117.el6

Aliases

1. CVE-2016-19082. NVD-2016-19083. OSV-DEBIAN-2016-19084. OSV-2016-19085. SECURITY-TRACKER-CVE-2016-1908

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.