The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | dropbear | < 2016.74-1 | dropbear_2016.74-1_all.deb |
Debian | 11 | all | dropbear | < 2016.74-1 | dropbear_2016.74-1_all.deb |
Debian | 10 | all | dropbear | < 2016.74-1 | dropbear_2016.74-1_all.deb |
Debian | 999 | all | dropbear | < 2016.74-1 | dropbear_2016.74-1_all.deb |
Debian | 13 | all | dropbear | < 2016.74-1 | dropbear_2016.74-1_all.deb |