CVE-2016-0777
Publication date 14 January 2016
Last updated 24 July 2024
Ubuntu priority
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| openssh | ||
| 14.04 LTS trusty |
Fixed 1:6.6p1-2ubuntu2.4
|
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
6.5 · Medium
|
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | Low |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | None |
| Availability impact | None |
| Vector | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
References
Related Ubuntu Security Notices (USN)
- USN-2869-1
- OpenSSH vulnerabilities
- 14 January 2016