Bug#510951: segfaults after PAM thread exits unexpectedly

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#510951: segfaults after PAM thread exits unexpectedly
From: martin f krafft <madduck@debian.org>
Date: Tue, 6 Jan 2009 08:46:52 +0100
Message-id: <[🔎] 20090106074652.GA3904@piper.oerlikon.madduck.net>
Reply-to: martin f krafft <madduck@debian.org>, 510951@bugs.debian.org

Package: openssh-server
Version: 1:5.1p1-4
Severity: important

I keep seeing this in the logs from time to time, in burst of
100-1000:

sshd[23060]: fatal: PAM: authentication thread exited unexpectedly
kernel: sshd[23324]: segfault at 00000000 eip 00000000 esp bfcd73cc error 4

This is probably a brute-force attack, but sshd's handling is
worrisome. Even though I cannot reproduce this, nor have more
information, I wanted to report this.

-- System Information:
Debian Release: 5.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26-1-amd64 (SMP w/1 CPU core)
Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssh-server depends on:
ii  adduser               3.110              add and remove users and groups
ii  debconf [debconf-2.0] 1.5.24             Debian configuration management sy
ii  dpkg                  1.14.24            Debian package management system
ii  libc6                 2.7-18             GNU C Library: Shared libraries
ii  libcomerr2            1.41.3-1           common error description library
ii  libkrb53              1.6.dfsg.4~beta1-5 MIT Kerberos runtime libraries
ii  libpam-modules        1.0.1-4+b1         Pluggable Authentication Modules f
ii  libpam-runtime        1.0.1-4            Runtime support for the PAM librar
ii  libpam0g              1.0.1-4+b1         Pluggable Authentication Modules l
ii  libselinux1           2.0.65-5           SELinux shared libraries
ii  libssl0.9.8           0.9.8g-14          SSL shared libraries
ii  libwrap0              7.6.q-16           Wietse Venema's TCP wrappers libra
ii  lsb-base              3.2-20             Linux Standard Base 3.2 init scrip
ii  openssh-blacklist     0.4.1              list of default blacklisted OpenSS
ii  openssh-client        1:5.1p1-4          secure shell client, an rlogin/rsh
ii  zlib1g                1:1.2.3.3.dfsg-12  compression library - runtime

Versions of packages openssh-server recommends:
ii  openssh-blacklist-extra       0.4.1      list of non-default blacklisted Op
ii  xauth                         1:1.0.3-2  X authentication utility

Versions of packages openssh-server suggests:
ii  gtk-led-askpass [ssh-askpass] 0.10-2     GTK+ password dialog suitable for 
ii  molly-guard                   0.4.4-2    protects machines from accidental 
pn  rssh                          <none>     (no description available)

-- debconf information excluded


-- 
 .''`.   martin f. krafft <madduck@d.o>      Related projects:
: :'  :  proud Debian developer               http://debiansystem.info
`. `'`   http://people.debian.org/~madduck    http://vcs-pkg.org
  `-  Debian - when you have better things to do than fixing systems

Attachment: digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/)

Reply to:

Follow-Ups:
- Bug#510951: segfaults after PAM thread exits unexpectedly
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Bug#510932: ssh-copy-id can't handle -p 2222 (or other ssh arguments)
Next by Date: Bug#510951: segfaults after PAM thread exits unexpectedly
Previous by thread: Bug#510932: ssh-copy-id can't handle -p 2222 (or other ssh arguments)
Next by thread: Bug#510951: segfaults after PAM thread exits unexpectedly
Index(es):
- Date
- Thread