Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.
- https://bugzilla.suse.com/show_bug.cgi?id=1153537
- https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Fastiraz/openssh-cve-resolv
- https://github.com/OhDamnn/Noregressh
- https://github.com/Totes5706/TotesHTB
- https://github.com/hackingyseguridad/ssha
- https://github.com/phx/cvescan
- https://github.com/siddicky/git-and-crumpets