CVE-2024-6409

8 Jul 2024

Título es

CVE-2024-6409

Lun, 08/07/2024 – 18:15

Tipo

CWE-364

Gravedad 2.0 Txt

Pendiente de análisis

Título en

CVE-2024-6409

Descripción en

A signal handler race condition vulnerability was found in OpenSSH's server (sshd), where a client does not authenticate within LoginGraceTime seconds (120 by default, 600 in old OpenSSH versions), then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog(). This issue leaves it vulnerable to a signal handler race condition on the cleanup_exit() function, which introduces the same vulnerability as CVE-2024-6387 in the unprivileged child of the SSHD server.

08/07/2024

Vector CVSS:3.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Gravedad 3.1 (CVSS 3.1 Base Score)

7.00

Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)

HIGH

Referencias

http://www.openwall.com/lists/oss-security/2024/07/08/2

https://access.redhat.com/security/cve/CVE-2024-6409

https://bugzilla.redhat.com/show_bug.cgi?id=2295085

Enviar en el boletín