Lucene search

K
suseSuseOPENSUSE-SU-2016:0144-1
HistoryJan 16, 2016 - 3:11 a.m.

Security update for openssh (critical)

2016-01-1603:11:03
lists.opensuse.org
22

0.003 Low

EPSS

Percentile

64.0%

  • CVE-2016-0777: A malicious or compromised server could cause the
    OpenSSH client to expose part or all of the client’s private key
    through the roaming feature (bsc#961642)
    - CVE-2016-0778: A malicious or compromised server could could trigger
    a buffer overflow in the OpenSSH client through the roaming feature
    (bsc#961645)

    This update disables the undocumented feature supported by the OpenSSH
    

    client and a commercial SSH server.

0.003 Low

EPSS

Percentile

64.0%

Related for OPENSUSE-SU-2016:0144-1