Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2008-5161

Publication date 19 November 2008

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server for IBM z/OS 5.5.1 and earlier, 6.0.0, and 6.0.1; and Client 4.0-J through 4.3.3-J and 4.0-K through 4.3.10-K; and (2) OpenSSH 4.7p1 and possibly other versions, when using a block cipher algorithm in Cipher Block Chaining (CBC) mode, makes it easier for remote attackers to recover certain plaintext data from an arbitrary block of ciphertext in an SSH session via unknown vectors.

Read the notes from the security team

Status

Package Ubuntu Release Status
openssh 13.04 raring
Not affected
12.10 quantal
Not affected
12.04 LTS precise
Not affected
11.10 oneiric
Not affected
11.04 natty
Not affected
10.10 maverick
Not affected
10.04 LTS lucid
Not affected
9.10 karmic Ignored
9.04 jaunty Ignored
8.10 intrepid Ignored
8.04 LTS hardy Ignored
7.10 gutsy Ignored
6.06 LTS dapper Ignored

Notes

jdstrand

very difficult to exploit as of 1:5.1p1-5 (Ubuntu 9.04 and later), the packet_disconnect() patch helps mitigate this and should reduce the success probability for the CPNI-957037 Plaintext Recovery Attack to 2^-18. can backport packet_disconnect() patch to 8.10 with next update. Will have to review feasibility of backport to 8.04 and 6.06 at next update. mitigation is to use AES CTR and arcfour ciphers and prefer them using the following line in sshd_config and ssh_config: Ciphers aes128-ctr,aes256-ctr,arcfour256,arcfour,aes128-cbc,aes256-cbc