Your submission was sent successfully! Close

CVE-2016-10011

Published: 4 January 2017

authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

Priority

Low

CVSS 3 base score: 5.5

Status

Package Release Status
openssh
Launchpad, Ubuntu, Debian
artful Not vulnerable
(1:7.4p1-1)
bionic Not vulnerable
(1:7.4p1-1)
cosmic Not vulnerable
(1:7.4p1-1)
disco Not vulnerable
(1:7.4p1-1)
eoan Not vulnerable
(1:7.4p1-1)
focal Not vulnerable
(1:7.4p1-1)
groovy Not vulnerable
(1:7.4p1-1)
hirsute Not vulnerable
(1:7.4p1-1)
precise Ignored
(end of ESM support, was needs-triage)
trusty
Released (1:6.6p1-2ubuntu2.10)
upstream
Released (1:7.4p1-1)
xenial
Released (1:7.2p2-4ubuntu2.4)
yakkety Ignored
(reached end-of-life)
zesty Not vulnerable
(1:7.4p1-1)
Patches:
upstream: https://github.com/openssh/openssh-portable/commit/54d022026aae4f53fa74cc636e4a032d9689b64d
upstream: https://github.com/openssh/openssh-portable/commit/a9c746088787549bb5b1ae3add7d06a1b6d93d5e (prereq)