Bug#624425: openssh-server: strange segfaults in logs and posssibility of successfull remote command execution

[Paul Menzel <pm.debian@googlemail.com>]

Dear Debian folks,


Am Donnerstag, den 28.04.2011, 06:40 -0400 schrieb ALbert R. Valiev:
> Package: openssh-server
> Version: 1:5.5p1-6
> Severity: important

[…]

> Apr 28 04:35:31 wz5 kernel: [3883195.806079] sshd[3692]: segfault at 18 ip 0000000000417d29 sp 00007fff7dbcad40 error 4 in sshd[400000+70000]

[…]

I am also experiencing this error using Squeeze with `openssh-server`
1:5.5p1-6.

        $ uname -m
        x86_64
        $ dpkg --print-architecture 
        amd64
        $ dmesg
        […]
        [842739.686364] sshd[9922]: segfault at e57a30 ip 000000000044d915 sp 00007fffbe19f5a0 error 6 in sshd[400000+70000]
        [843416.720317] sshd[10624]: segfault at 183c9d0 ip 000000000044d915 sp 00007fffdd724170 error 6 in sshd[400000+70000]
        [843726.668196] sshd[10946]: segfault at 2257a30 ip 000000000044d915 sp 00007fff7023a6e0 error 6 in sshd[400000+70000]
        [844402.835133] sshd[11657]: segfault at 98d9d0 ip 000000000044d915 sp 00007ffffdaf9ac0 error 6 in sshd[400000+70000]
        [844712.069952] sshd[11974]: segfault at 16c9a30 ip 000000000044d915 sp 00007fffd96637b0 error 6 in sshd[400000+70000]
        […]

I can reproduce this with a username and entering a password. But it works using key authentication(?).

Please advise on how to debug this issue.


Thanks,

Paul

Attachment: signature.asc
Description: This is a digitally signed message part