CVE-2008-3234

EPSS 4.6%

Published: 7/18/2008Modified: 4/28/2026

Description

sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapshot, allows remote authenticated users to obtain access to arbitrary SELinux roles by appending a :/ (colon slash) sequence, followed by the role name, to the username.

Affected packages (1)

Debian/opensshfrom 0

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-3234