CVE-2015-8325

Published: May 1, 2016Modified: May 6, 2026

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demonstrated by an LD_PRELOAD environment variable.

Affected (8)

Products: Debian: Debian Linux · Openbsd: Openssh · Canonical: Ubuntu Core, Ubuntu Linux, Ubuntu Touch

1 product

1 product

3 products

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 7.0
Debian Debian Linux	Version 8.0

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Openbsd Openssh	Up to 7.2

Configuration C

5 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Core	Version 15.04
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 15.10
Canonical Ubuntu Touch	Version 15.04

Related CWEs

References (24)

http://rhn.redhat.com/errata/RHSA-2016-2588.html

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2017-0641.html

Source: cve@mitre.org

http://www.debian.org/security/2016/dsa-3550

Source: cve@mitre.org

http://www.securityfocus.com/bid/86187

Source: cve@mitre.org

http://www.securitytracker.com/id/1036487

Source: cve@mitre.org

https://anongit.mindrot.org/openssh.git/commit/?id=85bdcd7c92fe7ff133bbc4e10a65c91810f88755

Source: cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=1328012

Source: cve@mitre.org

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Source: cve@mitre.org

https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-8325.html

Source: cve@mitre.org

https://security-tracker.debian.org/tracker/CVE-2015-8325

Source: cve@mitre.org

https://security.gentoo.org/glsa/201612-18

Source: cve@mitre.org

https://security.netapp.com/advisory/ntap-20180628-0001/

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2016-2588.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2017-0641.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2016/dsa-3550

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/86187

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1036487

Source: af854a3a-2127-422b-91ae-364da2661108

https://anongit.mindrot.org/openssh.git/commit/?id=85bdcd7c92fe7ff133bbc4e10a65c91810f88755

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=1328012

Source: af854a3a-2127-422b-91ae-364da2661108

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-8325.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://security-tracker.debian.org/tracker/CVE-2015-8325

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201612-18

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.netapp.com/advisory/ntap-20180628-0001/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.