openssh-server

Direct Vulnerabilities

Known vulnerabilities in the openssh-server package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Directory Traversal

*
  • M
Arbitrary Argument Injection

*
  • M
Directory Traversal

*
  • H
Expired Pointer Dereference

*
  • M
Improperly Implemented Security Check for Standard

*
  • M
Missing Initialization of Resource

*
  • M
Improper Restriction of Excessive Authentication Attempts

*
  • M
Improper Restriction of Excessive Authentication Attempts

*
  • L
Out-of-bounds Read

*
  • M
Improper Restriction of Communication Channel to Intended Endpoints

*
  • M
Double Free

*
  • H
Improper Handling of Inconsistent Special Elements

<0:8.0p1-29.el8_10
  • H
Missing Authentication for Critical Function

<0:8.0p1-29.el8_10
  • H
Improper Preservation of Permissions

<0:8.0p1-29.el8_10
  • H
OS Command Injection

<0:8.0p1-29.el8_10
  • H
Misinterpretation of Input

<0:8.0p1-29.el8_10
  • H
Access of Uninitialized Pointer

<0:8.0p1-28.el8_10
  • M
Improper Neutralization of Null Byte or NUL Character

<0:8.0p1-27.el8_10
  • M
Failure to Sanitize Special Element

<0:8.0p1-27.el8_10
  • M
Expected Behavior Violation

*
  • M
Detection of Error Condition Without Action

<0:8.0p1-26.el8_10
  • M
Improper Authentication

*
  • M
OS Command Injection

<0:8.0p1-19.el8_9.2
  • M
Truncation of Security-relevant Information

<0:8.0p1-19.el8_9.2
  • H
Arbitrary Code Injection

<0:8.0p1-19.el8_8
  • M
Improper Check for Dropped Privileges

<0:8.0p1-13.el8
  • M
User Interface (UI) Misrepresentation of Critical Information

<0:8.0p1-3.el8
  • M
Improper Input Validation

<0:8.0p1-3.el8
  • M
Improper Input Validation

<0:8.0p1-3.el8
  • M
Arbitrary Command Injection

<0:8.0p1-24.el8
  • M
Information Exposure

<0:8.0p1-10.el8
  • M
User Interface (UI) Misrepresentation of Critical Information

*
  • M
Information Exposure

*