Project

General

Profile

Bug #9348

Bug #9346: dropbear: User enumeration vulnerability (CVE-2018-15599)

[3.8] dropbear: User enumeration vulnerability (CVE-2018-15599)

Added by Alicha CH 5 months ago. Updated 3 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
08/28/2018
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username
validity affects how fields in SSH_MSG_USERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase.

References:

http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2018q3/002108.html
https://nvd.nist.gov/vuln/detail/CVE-2018-15599

Patch:

https://secure.ucc.asn.au/hg/dropbear/rev/5d2d1021ca00

Associated revisions

Revision bf98951e (diff)
Added by Natanael Copa 5 months ago

main/dropbear: backport security fix (CVE-2018-15599)

fixes #9348

History

#1 Updated by Natanael Copa 5 months ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH 3 months ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed
  • Security IDs deleted (CVE-2018-15599)

Also available in: Atom PDF