| Errata ID | 379 |
|---|---|
| Date | 2015-11-19 |
| Source package | openssh |
| Fixed in version | 5.5p1-6.49.201510261154 |
| Description | The following vulnerabilities have been fixed in OpenSSH: * Reject X11 connections after hard-coded Xauth cookie expiration time of 1200 seconds (CVE-2015-5352). * Only query each keyboard-interactive device once per authentication request regardless of how many times it is listed (CVE-2015-5600) |
| Additional notes | |
| CVE ID | CVE-2015-5352 CVE-2015-5600 |
| UCS Bug number | #39437 |
