Skip to content

Fix CVE-2026-3497#244

Merged
fscheiner merged 1 commit into
gridcf:masterfrom
fscheiner:include-fix-for-cve-2026-3497
May 15, 2026
Merged

Fix CVE-2026-3497#244
fscheiner merged 1 commit into
gridcf:masterfrom
fscheiner:include-fix-for-cve-2026-3497

Conversation

@fscheiner
Copy link
Copy Markdown
Member

@fscheiner fscheiner commented Apr 12, 2026

Fix information disclosure or denial of service due to uninitialized variables in gssapi-keyex

Based on https://src.fedoraproject.org/rpms/openssh/c/f595270c4ac496ad743336e80a4f3cc11a144efb?branch=rawhide by Zoltan Fridrich zfridric@redhat.com

@fscheiner
Fix CVE-2026-3497
3fde336 
Fix information disclosure or denial of service due to uninitialized variables in gssapi-keyex

Based on https://src.fedoraproject.org/rpms/openssh/c/f595270c4ac496ad743336e80a4f3cc11a144efb?branch=rawhide
by Zoltan Fridrich <zfridric@redhat.com>
@fscheiner
Copy link
Copy Markdown
Member Author

fscheiner commented Apr 12, 2026
edited
Loading

Untested so far. Also still unclear if the GSI functionality is affected.

fscheiner
fscheiner commented Apr 12, 2026
View reviewed changes
Comment thread gsi_openssh/source/kexgsss.c
@fscheiner fscheiner requested review from ellert and msalle April 12, 2026 21:38
msalle
msalle approved these changes Apr 24, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@msalle msalle left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I haven't tested it, but I'd say if it builds ok and you have tested also run-time that it works, and given that it's mostly (if not all) the fixes from RH in any case, I'd say it looks fine to me.

Comment thread gsi_openssh/source/kexgsss.c
@fscheiner
Copy link
Copy Markdown
Member Author

fscheiner commented May 15, 2026

It works the same as before (here tested on Rocky Linux 8.x):

[johndoe@gridftp-5 gsi-openssh-testing-with-cve-fix]$ sudo ~/bin/test-gss-kex-for-gsi-openssh.bash gridftp-5.domain.tld johndoe2
gsisshd: OpenSSH_10.0p2c-GSI_hpn18.7.0 GSI, OpenSSL 1.1.1k  FIPS 25 Mar 2021
gsissh: OpenSSH_10.0p2c-GSI_hpn18.7.0 GSI, OpenSSL 1.1.1k  FIPS 25 Mar 2021

Wait 3 seconds for startup of gsisshd ...

gss-gex-sha1- OK ( plus johndoe => johndoe2 )
gss-group1-sha1- OK ( plus johndoe => johndoe2 )
gss-group14-sha256- OK ( plus johndoe => johndoe2 )
gss-nistp256-sha256- OK ( plus johndoe => johndoe2 )
gss-curve25519-sha256- OK ( plus johndoe => johndoe2 )
gss-group16-sha512- OK ( plus johndoe => johndoe2 )

...so will merge this now.

@fscheiner fscheiner merged commit 0fcfe89 into gridcf:master May 15, 2026
20 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@msalle msalle msalle approved these changes

@ellert ellert Awaiting requested review from ellert

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@fscheiner @msalle