漏洞类别:CentOS
漏洞等级: 
漏洞信息
OpenSSH is OpenBSD's Secure Shell (SSH) protocol implementation.
The default OpenSSH configuration made it easy for remote attackers to exhaust unauthorized connection slots and prevent other users from logging in to a system. This flaw has been addressed by enabling random early connection drops by setting MaxStartups to 10:30:100 by default.
All OpenSSH users are advised to upgrade to these updated packages, which contain backported patches to correct these issues and add these enhancements.
漏洞危害
This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability.
解决方案
To resolve this issue, upgrade to the latest packages which contain a patch. Refer to CentOS advisory CESA-2013:1591for updates and patch information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论