Lucene search
K

6 matches found

OSV
OSV
added 2025/02/28 10:15 p.m.1 views

DEBIAN-CVE-2025-26466

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS7.1AI score0.38474EPSS
Exploits4References1
ATTACKERKB
ATTACKERKB
added 2025/02/28 10:15 p.m.2 views

CVE-2025-26466

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS7.1AI score0.38474EPSS
Exploits4References5Affected Software6
OSV
OSV
added 2025/02/28 10:15 p.m.7 views

AZL-56898 CVE-2025-26466 affecting package openssh for versions less than 9.8p1-3

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS7.3AI score0.38474EPSS
Exploits4References1
OSV
OSV
added 2025/02/28 10:15 p.m.2 views

ALPINE-CVE-2025-26466

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS6.6AI score0.38474EPSS
Exploits4References1
SUSE CVE
SUSE CVE
added 2025/02/18 1:36 p.m.4 views

SUSE CVE-2025-26466

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS7.3AI score0.38474EPSS
Exploits4References7
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.9 views

Astra Linux – Vulnerability in OpenSSH

A flaw was discovered in the OpenSSH package. For each ping packet received by the SSH server, a pong packet is allocated in a memory buffer and stored in a queue of packets. This memory buffer is only freed after the server/client key exchange is completed. A malicious client may continue to sen...

5.9CVSS7.2AI score0.38474EPSS
Exploits4References3
Rows per page
Query Builder