[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2015:1544-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":24,"duplicates":25,"related":26,"reserved_at":9,"published_at":32,"modified_at":33,"state":9,"summary":34,"references_raw":36,"kevs":89,"epss":9,"epss_history":90,"metrics":91,"affected":92},"SUSE-SU-2015:1544-1","Security update for openssh\n\n\nopenssh was updated to fix several security issues.\n\nThese security issues were fixed:\n* CVE-2015-5352: The x11_open_helper function in channels.c in ssh\n  in OpenSSH when ForwardX11Trusted mode is not used, lacked a check of\n  the refusal deadline for X connections, which made it easier for remote\n  attackers to bypass intended access restrictions via a connection outside\n  of the permitted time window (bsc#936695).\n* CVE-2015-5600: The kbdint_next_device function in auth2-chall.c\n  in sshd in OpenSSH did not properly restrict the processing of\n  keyboard-interactive devices within a single connection, which made it\n  easier for remote attackers to conduct brute-force attacks or cause a\n  denial of service (CPU consumption) via a long and duplicative list in\n  the ssh -oKbdInteractiveDevices option, as demonstrated by a modified\n  client that provides a different password for each pam element on this\n  list (bsc#938746).\n* CVE-2015-4000: Removed and disabled weak DH groups to address LOGJAM (bsc#932483).\n* Hardening patch to fix sftp RCE (bsc#903649).\n* CVE-2015-6563: The monitor component in sshd in OpenSSH accepted\n  extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which\n  allowed local users to conduct impersonation attacks by leveraging any SSH\n  login access in conjunction with control of the sshd uid to send a crafted\n  MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c. (bsc#943010)\n* CVE-2015-6564: Use-after-free vulnerability in the\n  mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH might\n  have allowed local users to gain privileges by leveraging control of the\n  sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request. (bsc#943006)\n\nAlso use %restart_on_update in the trigger script.\n",null,[],[],[],[14,16,18,20,22],{"_key":15},"CVE-2015-4000",{"_key":17},"CVE-2015-5352",{"_key":19},"CVE-2015-5600",{"_key":21},"CVE-2015-6563",{"_key":23},"CVE-2015-6564",[],[],[27,28,29,30,31],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},"2015-09-09T08:52:05Z","2025-05-02T04:04:34.875141Z",{"cisa_kev":35,"cisa_ransomware":35,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[37,43,48,52,56,60,64,68,73,77,81,85],{"url":38,"sources":39,"tags":41},"https://www.suse.com/support/update/announcement/2015/suse-su-20151544-1/",[40],"osv_suse",[42],"Advisory",{"url":44,"sources":45,"tags":46},"https://bugzilla.suse.com/903649",[40],[47],"REPORT",{"url":49,"sources":50,"tags":51},"https://bugzilla.suse.com/932483",[40],[47],{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/936695",[40],[47],{"url":57,"sources":58,"tags":59},"https://bugzilla.suse.com/938746",[40],[47],{"url":61,"sources":62,"tags":63},"https://bugzilla.suse.com/943006",[40],[47],{"url":65,"sources":66,"tags":67},"https://bugzilla.suse.com/943010",[40],[47],{"url":69,"sources":70,"tags":71},"https://www.suse.com/security/cve/CVE-2015-4000",[40],[72],"WEB",{"url":74,"sources":75,"tags":76},"https://www.suse.com/security/cve/CVE-2015-5352",[40],[72],{"url":78,"sources":79,"tags":80},"https://www.suse.com/security/cve/CVE-2015-5600",[40],[72],{"url":82,"sources":83,"tags":84},"https://www.suse.com/security/cve/CVE-2015-6563",[40],[72],{"url":86,"sources":87,"tags":88},"https://www.suse.com/security/cve/CVE-2015-6564",[40],[72],[],[],[],[93,106,110,114,119,123],{"ecosystem":94,"name":95,"vendor":96,"product":97,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":97,"source":9,"versions":99},"SUSE Linux Enterprise","openssh-askpass-gnome","suse","openssh-askpass-gnome&distro=SUSE Linux Enterprise Desktop 12","rpm",[100],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},"lt6_6p1_29_1",true,"ecosystem","6.6p1-29.1","excluding",{"ecosystem":94,"name":95,"vendor":96,"product":107,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":107,"source":9,"versions":108},"openssh-askpass-gnome&distro=SUSE Linux Enterprise Server 12",[109],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},{"ecosystem":94,"name":95,"vendor":96,"product":111,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":111,"source":9,"versions":112},"openssh-askpass-gnome&distro=SUSE Linux Enterprise Server for SAP Applications 12",[113],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},{"ecosystem":94,"name":115,"vendor":96,"product":116,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":116,"source":9,"versions":117},"openssh","openssh&distro=SUSE Linux Enterprise Desktop 12",[118],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},{"ecosystem":94,"name":115,"vendor":96,"product":120,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":120,"source":9,"versions":121},"openssh&distro=SUSE Linux Enterprise Server 12",[122],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9},{"ecosystem":94,"name":115,"vendor":96,"product":124,"cpe_part":9,"purl_type":98,"purl_namespace":96,"purl_name":124,"source":9,"versions":125},"openssh&distro=SUSE Linux Enterprise Server for SAP Applications 12",[126],{"version":101,"is_range":102,"range_type":103,"version_start":9,"version_start_type":9,"version_end":104,"version_end_type":105,"fixed_in":9}]