Lucene search
MitreCVELIST:CVE-2019-16905HistoryOct 09, 2019 - 12:00 a.m.
CVE-2019-16905
2019-10-0900:00:00
mitre
raw.githubusercontent.com
5
0.0005 Low
EPSS
Percentile
16.8%
OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.
Related
nessus
nessus
GLSA-201911-01 : OpenSSH: Integer overflow
2019-11-08 00:00:00
EulerOS Virtualization for ARM 64 3.0.5.0 : openssh (EulerOS-SA-2020-1046)
2020-01-13 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-16905 affecting package openssh 8.0p1-13
2020-11-05 04:21:20
prion
prion
Integer overflow
2019-10-09 20:15:00
symantec
symantec
OpenSSH CVE-2019-16905 Integer Overflow Vulnerability
2019-10-09 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2019-0045
2019-12-09 00:00:00
Important Photon OS Security Update - PHSA-2019-3.0-0045
2019-12-09 00:00:00
openvas
openvas
OpenSSH < 8.1 Integer Overflow Vulnerability
2020-03-23 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2020-1046)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2019-2294)
2020-01-23 00:00:00
gentoo
gentoo
OpenSSH: Integer overflow
2019-11-07 00:00:00
ubuntucve
ubuntucve
CVE-2019-16905
2019-10-09 00:00:00
redhatcve
redhatcve
CVE-2019-16905
2019-11-01 18:56:01
cve
cve
CVE-2019-16905
2019-10-09 20:15:00
debiancve
debiancve
CVE-2019-16905
2019-10-09 20:15:00
ibm
ibm
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00