27 lines
799 B
Diff
27 lines
799 B
Diff
From d86a071731239b564ed4b93071402199f69fd67a Mon Sep 17 00:00:00 2001
|
|
From: Andrew Lukoshko <alukoshko@almalinux.org>
|
|
Date: Tue, 2 Jul 2024 22:05:51 +0000
|
|
Subject: [PATCH] CVE-2024-6409: Possible remote code execution in privsep
|
|
child due to a race condition in signal handling
|
|
|
|
---
|
|
sshd.c | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/sshd.c b/sshd.c
|
|
index ec595d0..2a25e2c 100644
|
|
--- a/sshd.c
|
|
+++ b/sshd.c
|
|
@@ -384,7 +384,7 @@ grace_alarm_handler(int sig)
|
|
|
|
/* Log error and exit. */
|
|
if (use_privsep && pmonitor != NULL && pmonitor->m_pid <= 0)
|
|
- cleanup_exit(255); /* don't log in privsep child */
|
|
+ _exit(1); /* don't log in privsep child */
|
|
else {
|
|
sigdie("Timeout before authentication for %s port %d",
|
|
ssh_remote_ipaddr(the_active_state),
|
|
--
|
|
2.43.5
|
|
|