[Bug 3515] PermitRemoteOpen not behaving as expected

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Dec 31 11:17:51 AEDT 2022


https://bugzilla.mindrot.org/show_bug.cgi?id=3515

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Assignee|unassigned-bugs at mindrot.org |djm at mindrot.org
             Status|NEW                         |ASSIGNED
                 CC|                            |djm at mindrot.org,
                   |                            |dtucker at dtucker.net
   Attachment #3647|                            |ok?(dtucker at dtucker.net)
              Flags|                            |

--- Comment #1 from Damien Miller <djm at mindrot.org> ---
Created attachment 3647
  --> https://bugzilla.mindrot.org/attachment.cgi?id=3647&action=edit
don't consume first PermitRemoteOpen argument

It's a bug. The parsing code for PermitRemoteOpen erroneously consumes
its first argument to look for the special "any/none" keywords and
doesn't record it if it isn't one of those.

We will be flagging this as a security bug in the next release.

Workaround: specify the first PermitRemoteOpen argument twice.

A separate problem is that we don't current have regression tests for
PermitRemoteOpen

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list