UBUNTU-CVE-2021-41617
See a problem?- Source
- https://ubuntu.com/security/notices/UBUNTU-CVE-2021-41617
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2021/UBUNTU-CVE-2021-41617.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2021-41617
- Related
- Published
- 2021-09-26T19:15:00Z
- Modified
- 2021-09-26T19:15:00Z
- Severity
-
- 7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.
- References
-
- https://ubuntu.com/security/CVE-2021-41617
- https://www.openwall.com/lists/oss-security/2021/09/26/1
- https://www.openssh.com/txt/release-8.8
- https://www.openssh.com/security.html
- https://ubuntu.com/security/notices/USN-5666-1
- https://ubuntu.com/security/notices/USN-6565-1
- https://www.cve.org/CVERecord?id=CVE-2021-41617
Affected packages
Ubuntu:Pro:14.04:LTS / openssh
Package
- Name
- openssh
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:6.*
1:6.2p2-6
1:6.2p2-6ubuntu1
1:6.4p1-1
1:6.4p1-2
1:6.5p1-1
1:6.5p1-2
1:6.5p1-3
1:6.5p1-4
1:6.5p1-6
1:6.6p1-1
1:6.6p1-2
1:6.6p1-2ubuntu1
1:6.6p1-2ubuntu2
1:6.6p1-2ubuntu2.2
1:6.6p1-2ubuntu2.3
1:6.6p1-2ubuntu2.4
1:6.6p1-2ubuntu2.6
1:6.6p1-2ubuntu2.7
1:6.6p1-2ubuntu2.8
1:6.6p1-2ubuntu2.10
1:6.6p1-2ubuntu2.11
1:6.6p1-2ubuntu2.12
1:6.6p1-2ubuntu2.13
1:6.6p1-2ubuntu2.13+esm1
1:6.6p1-2ubuntu2.13+esm2
Ubuntu:Pro:16.04:LTS / openssh
Package
- Name
- openssh
- Purl
- pkg:deb/ubuntu/openssh@1:7.2p2-4ubuntu2.10+esm2?arch=src?distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:7.2p2-4ubuntu2.10+esm2
Affected versions
1:6.*
1:6.9p1-2
1:6.9p1-3
1:7.*
1:7.1p1-1
1:7.1p1-3
1:7.1p1-4
1:7.1p1-6
1:7.1p2-1
1:7.1p2-2
1:7.2p1-1
1:7.2p2-1
1:7.2p2-2
1:7.2p2-3
1:7.2p2-4
1:7.2p2-4ubuntu1
1:7.2p2-4ubuntu2.1
1:7.2p2-4ubuntu2.2
1:7.2p2-4ubuntu2.4
1:7.2p2-4ubuntu2.5
1:7.2p2-4ubuntu2.6
1:7.2p2-4ubuntu2.7
1:7.2p2-4ubuntu2.8
1:7.2p2-4ubuntu2.10
1:7.2p2-4ubuntu2.10+esm1
Ecosystem specific
{
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"ubuntu_priority": "low",
"binaries": [
{
"openssh-client-ssh1-dbgsym": "1:7.2p2-4ubuntu2.10+esm2",
"ssh-askpass-gnome-dbgsym": "1:7.2p2-4ubuntu2.10+esm2",
"ssh-askpass-gnome": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-client-udeb-dbgsym": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-client-ssh1": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-client-udeb": "1:7.2p2-4ubuntu2.10+esm2",
"ssh-krb5": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-server-udeb-dbgsym": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-client": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-sftp-server": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-sftp-server-dbgsym": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-server": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-server-udeb": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-server-dbgsym": "1:7.2p2-4ubuntu2.10+esm2",
"ssh": "1:7.2p2-4ubuntu2.10+esm2",
"openssh-client-dbgsym": "1:7.2p2-4ubuntu2.10+esm2"
}
],
"priority_reason": "Cannot be reproduced on Ubuntu since sshd drops groups early"
}
Ubuntu:Pro:18.04:LTS / openssh
Package
- Name
- openssh
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:18.04:LTS / openssh-ssh1
Package
- Name
- openssh-ssh1
Ubuntu:20.04:LTS / openssh
Package
- Name
- openssh
- Purl
- pkg:deb/ubuntu/openssh@1:8.2p1-4ubuntu0.11?arch=src?distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:8.2p1-4ubuntu0.11
Affected versions
1:8.*
1:8.0p1-6build1
1:8.1p1-1
1:8.1p1-5
1:8.2p1-4
1:8.2p1-4ubuntu0.1
1:8.2p1-4ubuntu0.2
1:8.2p1-4ubuntu0.3
1:8.2p1-4ubuntu0.4
1:8.2p1-4ubuntu0.5
1:8.2p1-4ubuntu0.7
1:8.2p1-4ubuntu0.8
1:8.2p1-4ubuntu0.9
1:8.2p1-4ubuntu0.10
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"openssh-client": "1:8.2p1-4ubuntu0.11",
"ssh-askpass-gnome-dbgsym": "1:8.2p1-4ubuntu0.11",
"openssh-tests": "1:8.2p1-4ubuntu0.11",
"openssh-sftp-server-dbgsym": "1:8.2p1-4ubuntu0.11",
"ssh-askpass-gnome": "1:8.2p1-4ubuntu0.11",
"openssh-sftp-server": "1:8.2p1-4ubuntu0.11",
"openssh-tests-dbgsym": "1:8.2p1-4ubuntu0.11",
"openssh-server-udeb": "1:8.2p1-4ubuntu0.11",
"openssh-server": "1:8.2p1-4ubuntu0.11",
"openssh-server-dbgsym": "1:8.2p1-4ubuntu0.11",
"openssh-client-udeb": "1:8.2p1-4ubuntu0.11",
"ssh": "1:8.2p1-4ubuntu0.11",
"openssh-client-dbgsym": "1:8.2p1-4ubuntu0.11"
}
],
"priority_reason": "Cannot be reproduced on Ubuntu since sshd drops groups early"
}
Ubuntu:20.04:LTS / openssh-ssh1
Package
- Name
- openssh-ssh1
Ubuntu:22.04:LTS / openssh
Package
- Name
- openssh
- Purl
- pkg:deb/ubuntu/openssh@1:8.9p1-3?arch=src?distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:8.9p1-3
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"openssh-client": "1:8.9p1-3",
"ssh-askpass-gnome-dbgsym": "1:8.9p1-3",
"openssh-tests": "1:8.9p1-3",
"openssh-sftp-server-dbgsym": "1:8.9p1-3",
"ssh-askpass-gnome": "1:8.9p1-3",
"openssh-sftp-server": "1:8.9p1-3",
"openssh-server": "1:8.9p1-3",
"openssh-tests-dbgsym": "1:8.9p1-3",
"openssh-server-dbgsym": "1:8.9p1-3",
"ssh": "1:8.9p1-3",
"openssh-client-dbgsym": "1:8.9p1-3"
}
],
"priority_reason": "Cannot be reproduced on Ubuntu since sshd drops groups early"
}
Ubuntu:22.04:LTS / openssh-ssh1
Package
- Name
- openssh-ssh1