CVE-2007-3102
Published: 18 October 2007
Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. NOTE: some of these details are obtained from third party information.
Notes
| Author | Note |
|---|---|
| mdeslaur | this issue in util-linux is CVE-2008-1296 I'm removing util-linux from here |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
openssh Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
(RedHat patch only)
|
| edgy |
Not vulnerable
(RedHat patch only)
|
|
| feisty |
Not vulnerable
(RedHat patch only)
|
|
| gutsy |
Not vulnerable
(RedHat patch only)
|
|
| hardy |
Not vulnerable
(RedHat patch only)
|
|
| intrepid |
Not vulnerable
(RedHat patch only)
|
|
| upstream |
Not vulnerable
(RedHat patch only)
|