FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dropbear -- authorized_keys command= bypass

Affected packages
dropbear < 2016.72

Details

VuXML ID 8eb78cdc-e9ec-11e5-85be-14dae9d210b8
Discovery 2016-03-11
Entry 2016-03-14

Matt Johnson reports:

Validate X11 forwarding input. Could allow bypass of authorized_keys command= restrictions

References

CVE Name CVE-2016-3116
URL https://matt.ucc.asn.au/dropbear/CHANGES