Ubuntu Security Update USN-8514-1: OpenSSH vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,719
Reaction score
94
Credits
-1,257
It was discovered that OpenSSH incorrectly handled file permissions when downloading files as root using the legacy scp protocol without the preserve-mode option. An attacker could use this to install setuid or setgid files on a system, possibly leading to privilege escalation.

Continue reading...
 


Follow Linux.org

Staff online

Members online


Latest posts

Top