CVE-2006-0353
EPSS 0.08%lsh-server - filedescriptor leak
Published: 1/22/2006Modified: 4/28/2026
Also known as:DEBIAN-CVE-2006-0353
Description
unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to the randomness generator, which allows local users to cause a denial of service by truncating the seed file, which prevents the server from starting, or obtain sensitive seed information that could be used to crack keys.
Affected packages (2)
- Debian/lsh-utilsfrom 0, < 2.0.1cdbs-4
- Debian/lsh-utilsfrom 0, < 2.0.1-3sarge1