HP Security Bulletin - A potential security vulnerability has been identified with HP-UX running HP-UX Secure Shell. The vulnerability could be exploited locally to gain unauthorized access and create a Denial of Service (DoS).
2cd46811be74b61931443d90b14f854ab729ee479e5a774b1d8a65ea85ff55fb
FreeBSD Security Advisory - OpenSSH has a X11-forwarding privilege escalation issue. When logging in via SSH with X11-forwarding enabled, sshd(8) fails to correctly handle the case where it fails to bind to an IPv4 port but successfully binds to an IPv6 port. In this case, applications which use X11 will connect to the IPv4 port, even though it had not been bound by sshd(8) and is therefore not being securely forwarded.
e9b01dda09d2fd2b373a83e4472cf74b709679aa9d7a842873ded6635ef406d9
Gentoo Linux Security Advisory GLSA 200804-03 - Two flaws have been discovered in OpenSSH which could allow local attackers to escalate their privileges. Versions less than 4.7_p1-r6 are affected.
97c202923fdfaedaac16a4cee275be6a9cbeeaeed47e2d061d7ebc9e1021f944
Ubuntu Security Notice 597-1 - Timo Juhani Lindfors discovered that the OpenSSH client, when port forwarding was requested, would listen on any available address family. A local attacker could exploit this flaw on systems with IPv6 enabled to hijack connections, including X11 forwards.
a538419d13e0a2c12e6e316531afe52f9d30f7e21c02b96fe33093daae43e69b
Mandriva Linux Security Advisory - OpenSSH allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port.
e6bfbd30b5cc8a208d9dcb010bda8933cea6b4886d881073ac1eca96eadaaf3b