CVE-2006-0353

CVE-2006-0353 affects lsh 2.0.1’s lshd, which leaks file descriptors related to the randomness generator. A local attacker can truncate the seed file, potentially preventing lshd from starting or enabling seed/key disclosure. Debian’s DSA-956-1 and related advisories describe a local vulnerabilit...

CVE-2003-0826

CVE-2003-0826 maps to CAN-2003-0826. The lsh server (lshd) contains a heap-based buffer overflow in functions in read_line.c, channel_commands.c, and client_keyexchange.c when processing long input, allowing remote code execution. Debian and OpenVAS advisories reference CAN-2003-0826 and CAN-2005...