openssh vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the openssh package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
M Truncation of Security-relevant Information	<0:7.4p1-22.81.amzn1
H Arbitrary Code Injection	<0:7.4p1-22.80.amzn1
M CVE-2023-35812	<0:7.4p1-22.78.amzn1
M Improper Check for Dropped Privileges	<0:7.4p1-22.77.amzn1
M Directory Traversal	<0:7.4p1-21.73.amzn1
M Improper Encoding or Escaping of Output	<0:7.4p1-21.73.amzn1
M Incorrect Authorization	<0:7.4p1-21.73.amzn1
L Race Condition	<0:7.4p1-16.71.amzn1
L Incorrect Permission Assignment for Critical Resource	<0:7.4p1-16.69.amzn1
M Improper Input Validation	<0:7.4p1-11.68.amzn1
M Key Management Errors	<0:7.4p1-11.68.amzn1
M Information Exposure	<0:7.4p1-11.68.amzn1
M Out-of-Bounds	<0:7.4p1-11.68.amzn1
M Untrusted Search Path	<0:7.4p1-11.68.amzn1
M Access Restriction Bypass	<0:6.6.1p1-31.62.amzn1
M Security Features	<0:6.6.1p1-25.61.amzn1
M CVE-2016-3115	<0:6.6.1p1-23.60.amzn1
M Out-of-Bounds	<0:6.6.1p1-23.59.amzn1
M Information Exposure	<0:6.6.1p1-23.59.amzn1
M Improper Input Validation	<0:6.6.1p1-22.58.amzn1
M Access Restriction Bypass	<0:6.6.1p1-22.58.amzn1
M Access Restriction Bypass	<0:6.6.1p1-22.58.amzn1
M Access Restriction Bypass	<0:6.2p2-8.45.amzn1
M Improper Input Validation	<0:6.2p2-8.45.amzn1
M Access Restriction Bypass	<0:6.2p2-8.44.amzn1
M Access Restriction Bypass	<0:6.2p2-8.41.amzn1
M Improper Input Validation	<0:6.2p2-8.41.amzn1
H ALAS-2014-319	<0:6.2p2-7.39.amzn1
M Improper Input Validation	<0:5.3p1-84.20.amzn1
M Numeric Errors	<0:5.3p1-81.17.amzn1