CVE-2025-47914

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read...

CVE-2025-47914 Malformed constraint may cause denial of service in golang.org/x/crypto/ssh/agent

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read...

CVE-2025-47914

CVE-2025-47914 involves IBM Storage Scale CloudKit. The IBM Security Bulletin identifies that SSH Agent identity-processing can panic from an out-of-bounds read when processing new identities, with affected builds including IBM Storage Scale 5.2.3.0–5.2.3.5 and 6.0.0.0. remediation is to upgrade ...

CVE-2025-47914 Malformed constraint may cause denial of service in golang.org/x/crypto/ssh/agent

SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read...

CVE-2025-58181

SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption...

CVE-2025-37155

A vulnerability in the SSH restricted shell interface of the network management services allows improper access control for authenticated read-only users. If successfully exploited, this vulnerability could allow an attacker with read-only privileges to gain administrator access on the affected...

CVE-2025-37155

CVE-2025-37155 describes an improper access-control flaw in the SSH restricted shell interface of network management services. The vulnerability could allow an attacker with authenticated read-only privileges to escalate to administrator access on affected systems. Documented in multiple sources,...

SUSE-RU-2025:4131-1 Recommended update for suse-migration-sle16-activation, SLES16-Migration, SLES16-SAP_Migration, suse-migration-services, suse-migration-rpm, wicked2nm, image-janitor

This update for suse-migration-sle16-activation, SLES16-Migration, SLES16-SAPMigration, suse-migration-services, suse-migration-rpm, wicked2nm, image-janitor fixes the following issues: Changes for suse-migration-sle16-activation: - Simplify interface naming by disabling predictable names at boot...

SUSE-RU-2025:21046-1 Recommended update for afterburn

This update for afterburn fixes the following issues: - Update to version 5.9.0.git21.a73f509: docs/release-notes: update for release 5.10.0 cargo: update dependencies microsoft/azure: Add XML attribute alias for serde-xml-rs Fedora compat docs/release-notes: Add entry for Azure SharedConfig XML...

Siemens RUGGEDCOM Devices Inadequate Encryption Strength (CVE-2021-37209)

The SSH server on affected devices is configured to offer weak ciphers by default. This could allow an unauthorized attacker in a man-in- the-middle position to read and modify any data passed over the connection between legitimate clients and the affected device. This plugin only works with...

Potential denial of service in golang.org/x/crypto/ssh/agent

...

Kubernetes: Node Detection

Detection of the Kubernetes node type SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.137000";...

SUSE SLES12 Security Update : openssh8.4 (SUSE-SU-2025:4098-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4098-1 advisory. - CVE-2025-61984: Fixed code execution via control characters in usernames when a ProxyCommand is used bsc1251198 - CVE-2025-61985: Fixed code...

SUSE CVE-2025-47913

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...

HSEC-2023-0009 git-annex command injection via malicious SSH hostname

git-annex command injection via malicious SSH hostname git-annex was vulnerable to the same class of security hole as git's CVE-2017-1000117. In several cases, git-annex parses a repository URL, and uses it to generate a ssh command, with the hostname to ssh to coming from the URL. If the hostnam...

SUSE-SU-2025:4098-1 Security update for openssh8.4

This update for openssh8.4 fixes the following issues: - CVE-2025-61984: Fixed code execution via control characters in usernames when a ProxyCommand is used bsc1251198 - CVE-2025-61985: Fixed code execution via '\0' character in ssh:// URI when a ProxyCommand is used bsc1251199...

AZL-70313 CVE-2025-47913 affecting package buildah 1.41.4-6

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...

DEBIAN-CVE-2025-47913

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...

AZL-70328 CVE-2025-47913 affecting package docker-buildx for versions less than 0.14.0-8

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...

AZL-70331 CVE-2025-47913 affecting package docker-compose for versions less than 2.27.0-6

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...