Amazon Linux AMI : openssh (ALAS-2015-568)
Medium Nessus Plugin ID 84928
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionIt was reported that when forwarding X11 connections with ForwardX11Trusted=no, connections made after ForwardX11Timeout expired could be permitted and no longer subject to XSECURITY restrictions because of an ineffective timeout check in ssh(1) coupled with 'fail open' behavior in the X11 server when clients attempted connections with expired credentials.
SolutionRun 'yum update openssh' to update your system.