It was found that the host private key material could possibly leak to the privilege-separated child processes via re-allocated memory. An attacker able to compromise the privilege-separated process could therefore obtain the leaked key information.

References

bugzilla.redhat.com/show_bug.cgi?id=1406286

www.openssh.com/txt/release-7.4

ubuntucve 1

prion 1

osv 2

cve 1

cvelist 1

debiancve 1

seebug 1

alpinelinux 1

nessus 30

nvd 1

f5 1

openvas 17

fedora 1

symantec 1

ibm 13

archlinux 1

slackware 1

aix 1

cloudfoundry 1

ubuntu 1

oraclelinux 1

amazon 1

redhat 1

centos 1

debian 1

rosalinux 1

ics 1

apple 2

ubuntucve

CVE-2016-10011

2017-01-04 00:00:00

prion

Design/Logic Flaw

2017-01-05 02:59:00

osv

CVE-2016-10011

2017-01-05 02:59:03

openssh - security update

2018-09-10 00:00:00

cve

CVE-2016-10011

2017-01-05 02:59:03

cvelist

CVE-2016-10011

2017-01-05 00:00:00

debiancve

CVE-2016-10011

2017-01-05 02:59:03

seebug

OpenSSH information leak Vulnerability, CVE-2016-10011）

2016-12-21 00:00:00

alpinelinux

CVE-2016-10011

2017-01-05 02:59:03

nessus

F5 Networks BIG-IP : OpenSSH vulnerability (K24324390)

2018-12-18 00:00:00

EulerOS 2.0 SP2 : openssh (EulerOS-SA-2017-1054)

2017-05-01 00:00:00

EulerOS 2.0 SP1 : openssh (EulerOS-SA-2017-1055)

2017-05-01 00:00:00

nvd

CVE-2016-10011

2017-01-05 02:59:03

K24324390 : OpenSSH vulnerability CVE-2016-10011

2017-01-27 00:00:00

openvas

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2017-1054)

2020-01-23 00:00:00

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2017-1055)

2020-01-23 00:00:00

SUSE: Security Advisory (SUSE-SU-2017:1661-1)

2021-06-09 00:00:00

fedora

[SECURITY] Fedora 25 Update: openssh-7.4p1-1.fc25

2017-01-06 20:25:39

symantec

SA144 : OpenSSH Vulnerabilities January 2017

2017-03-02 08:00:00

ibm

Security Bulletin: Vulnerabilities in OpenSSH affect IBM Chassis Management Module (CMM)

2019-01-31 02:40:01

Security Bulletin: Vulnerabilities in OpenSSH affect IBM BladeCenter Advanced Management Module (AMM)

2023-04-14 14:32:25

Security Bulletin: IBM Security Network Protection is affected by vulnerabilities in OpenSSH (CVE-2016-6210 CVE-2016-6515 CVE-2016-10009 CVE-2016-10011)

2018-06-16 22:03:39

archlinux

[ASA-201612-20] openssh: multiple issues

2016-12-22 00:00:00

slackware

[slackware-security] openssh

2016-12-24 01:35:34

aix

Vulnerabilities in OpenSSH affect AIX.

2017-02-05 23:36:10

cloudfoundry

USN-3538-1: OpenSSH vulnerabilities | Cloud Foundry

2018-02-01 00:00:00

ubuntu

OpenSSH vulnerabilities

2018-01-22 00:00:00

oraclelinux

openssh security, bug fix, and enhancement update

2017-08-07 00:00:00

amazon

Medium: openssh

2017-10-03 11:00:00

redhat

(RHSA-2017:2029) Moderate: openssh security, bug fix, and enhancement update

2017-08-01 05:57:17

centos

openssh, pam_ssh_agent_auth security update

2017-08-24 01:40:16

debian

[SECURITY] [DLA 1500-1] openssh security update

2018-09-10 08:44:17

rosalinux

Advisory ROSA-SA-2021-1938

2021-07-02 17:38:20

ics

Siemens SCALANCE X-200RNA Switch Devices

2022-12-19 12:00:00

apple

About the security content of macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite - Apple Support

2017-08-29 02:52:03

About the security content of macOS Sierra 10.12.4, Security Update 2017-001 El Capitan, and Security Update 2017-001 Yosemite

2017-03-27 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for RH:CVE-2016-10011