Release Info

Advisory: CLSA-2021:1639681866

OS: Ubuntu 16.04 ELS

Public date: 2021-12-16 00:00:00

Project: openssh

Version: 2:7.2p2-4ubuntu2.10+tuxcare.els1

Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2021-1639681866.html

Changelog

* SECURITY UPDATE: helper programs may run with privilege escalation - debian/patches/CVE-2021-41617.patch: set initgroups() before setresgid() - CVE-2021-41617

Update

Packages list

openssh-client_7.2p2-4ubuntu2.10+tuxcare.els1_amd64.deb openssh-client-ssh1_7.2p2-4ubuntu2.10+tuxcare.els1_amd64.deb openssh-server_7.2p2-4ubuntu2.10+tuxcare.els1_amd64.deb openssh-sftp-server_7.2p2-4ubuntu2.10+tuxcare.els1_amd64.deb ssh_7.2p2-4ubuntu2.10+tuxcare.els1_all.deb ssh-askpass-gnome_7.2p2-4ubuntu2.10+tuxcare.els1_amd64.deb ssh-krb5_7.2p2-4ubuntu2.10+tuxcare.els1_all.deb

CVEs

CVE-2021-41617