Openbsd

Openssh

138 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.59%
  • Veröffentlicht 29.01.2014 16:02:05
  • Zuletzt bearbeitet 28.05.2026 18:16:22

The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption...

  • EPSS 2.67%
  • Veröffentlicht 08.11.2013 15:55:13
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The mm_newkeys_from_blob function in monitor_wrap.c in sshd in OpenSSH 6.2 and 6.3, when an AES-GCM cipher is used, does not properly initialize memory for a MAC context data structure, which allows remote authenticated users to bypass intended Force...

  • EPSS 16.51%
  • Veröffentlicht 07.03.2013 20:55:01
  • Zuletzt bearbeitet 29.05.2026 21:16:23

The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodi...

Exploit
  • EPSS 2.6%
  • Veröffentlicht 05.04.2012 14:55:03
  • Zuletzt bearbeitet 16.06.2026 23:35:45

The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length fi...

  • EPSS 3.67%
  • Veröffentlicht 27.01.2012 19:55:01
  • Zuletzt bearbeitet 16.06.2026 23:38:18

The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these m...

Exploit
  • EPSS 7.79%
  • Veröffentlicht 02.03.2011 20:00:00
  • Zuletzt bearbeitet 16.06.2026 23:25:28

The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of se...

  • EPSS 1.8%
  • Veröffentlicht 10.02.2011 18:00:57
  • Zuletzt bearbeitet 16.06.2026 23:27:35

The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which might allow remote attackers to obtain sensitive stac...

Exploit
  • EPSS 4.24%
  • Veröffentlicht 06.12.2010 22:30:31
  • Zuletzt bearbeitet 16.06.2026 23:24:53

OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending c...

  • EPSS 0.32%
  • Veröffentlicht 01.10.2009 15:30:00
  • Zuletzt bearbeitet 16.06.2026 23:10:28

A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux (RHEL) 5.4 and Fedora 11, allows local users to gain privileges via hard links to setuid programs that use config...

  • EPSS 15.4%
  • Veröffentlicht 19.11.2008 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:59:22

Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server f...