SB2018091024 - Information disclosure in dropbear (Alpine package)
Published: September 10, 2018
Security Bulletin ID
SB2018091024
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Information disclosure
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Information disclosure (CVE-ID: CVE-2018-15599)
The vulnerability allows a remote attacker to obtain potentially sensitive information.
The vulnerability exists in the recv_msg_userauth_request function, as defined in the svr-auth.c source code file due to the way fields in SSH_MSG_USERAUTH messages are handled based on username validity. A remote attacker can send an authentication request packet and access sensitive information, such as valid usernames.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=e684959dd09576a280eda8616faeb6c3dbd460ff
- https://git.alpinelinux.org/aports/commit/?id=de9ffe497547df2da1542ea3ae029fce69296f3e
- https://git.alpinelinux.org/aports/commit/?id=5e60bc7b315d1c806baa72e3ca1bd46b273ab664
- https://git.alpinelinux.org/aports/commit/?id=ee43ff043bbe380b1070603146e8da09b08b6116
- https://git.alpinelinux.org/aports/commit/?id=db32ce6b261a321ba5b33f6056eddedaa4a58f5f
- https://git.alpinelinux.org/aports/commit/?id=8c2d71dd458536e9d5a49d021487f3e805b9d190
- https://git.alpinelinux.org/aports/commit/?id=8e0dfd98580cbf143a79a0637f683c76a2d3ddda
- https://git.alpinelinux.org/aports/commit/?id=685fa426c5c984f78ebcf0ac1189fe147fc832c3
- https://git.alpinelinux.org/aports/commit/?id=bf98951e57e6df43f97c2b9ae518f87f16bdfad7