CVE-2008-3234

Name of the Vulnerable Software and Affected Versions: OpenSSH version 4 OpenSSH snapshot 20070303

Description: The issue allows remote authenticated users to gain access to arbitrary SELinux roles. This is achieved by appending a :/ sequence, followed by the role name, to the username.

Recommendations: For OpenSSH version 4, update to a version that fixes this issue. For OpenSSH snapshot 20070303, update to a newer snapshot that includes the fix. As a temporary workaround, consider restricting access to SELinux roles until a patch is available.