CVE-2016-0777
MEDIUM6.5EPSS 71.7%openssh - security update
發布日:2016/1/14修改日:2026/4/28
描述
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
受影響套件(3)
- Debian/opensshfrom 0, < 1:7.1p2-1
- Debian/opensshfrom 0, < 1:5.5p1-6+squeeze8
- Debian/opensshfrom 0, < 1:6.0p1-4+deb7u3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |