paul Posted December 5, 2007 Report Share Posted December 5, 2007 A flaw in OpenSSH prior to 4.7 prevented ssh from properly handling when an untrusted cookie could not be created and used a trusted X11 cookie instead, which could allow attackers to violate intended policy and gain privileges by causing an X client to be treated as trusted. The updated packages have been patched to correct these issue. Link to comment Share on other sites More sharing options...
Recommended Posts