The installed version of OpenSSH is prior to 7.6 and is affected by a vulnerability in the βprocess_openβ function that does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
Binary data 701159.prm