openssh vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the openssh package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Information Exposure

*
  • H
Improper Input Validation

*
  • M
Improper Encoding or Escaping of Output

<1:6.7p1-5+deb8u8
  • M
Inappropriate Encoding for Output Context

*
  • M
Directory Traversal

<1:6.7p1-5+deb8u8
  • M
Incorrect Authorization

<1:6.7p1-5+deb8u8
  • M
Information Exposure

*
  • M
Race Condition

<1:6.7p1-5+deb8u5
  • H
NULL Pointer Dereference

<1:6.7p1-5+deb8u6
  • M
Incorrect Permission Assignment for Critical Resource

<1:6.7p1-5+deb8u6
  • C
Security Features

<1:6.7p1-5+deb8u6
  • M
Information Exposure

<1:6.7p1-5+deb8u3
  • H
Out-of-Bounds

<1:6.7p1-5+deb8u6
  • M
Key Management Errors

<1:6.7p1-5+deb8u6
  • H
Untrusted Search Path

<1:6.7p1-5+deb8u6
  • H
Access Restriction Bypass

*
  • H
Resource Management Errors

*
  • H
Improper Input Validation

<1:6.7p1-5+deb8u6
  • H
Access Restriction Bypass

<1:6.7p1-5+deb8u2
  • M
CVE-2016-3115

<1:6.7p1-5+deb8u6
  • H
Out-of-Bounds

<1:6.7p1-5+deb8u1
  • M
Information Exposure

<1:6.7p1-5+deb8u1
  • L
Improper Input Validation

<1:6.7p1-5+deb8u6
  • H
Access Restriction Bypass

<1:6.7p1-5+deb8u6
  • M
Access Restriction Bypass

<1:6.7p1-5+deb8u6
  • H
Access Restriction Bypass

<1:6.7p1-5+deb8u6
  • M
Improper Input Validation

<1:6.6p1-1
  • M
Access Restriction Bypass

<1:6.6p1-1
  • M
Access Restriction Bypass

<1:6.4p1-1
  • M
CVE-2010-5107

<1:6.0p1-4
  • L
Numeric Errors

<1:5.9p1-1
  • L
Credentials Management

<1:5.6p1-1
  • M
Access Restriction Bypass

<1:5.8p1-2
  • L
Information Exposure

<1:5.1p1-5
  • M
Access Restriction Bypass

<1:4.6p1-1
  • M
Access Restriction Bypass

*
  • M
Cryptographic Issues

<1:4.7p1-10
  • H
Cryptographic Issues

<4.7p1-9
  • M
Access Restriction Bypass

<1:4.7p1-8
  • H
Access Restriction Bypass

<1:4.7p1-5
  • H
Improper Input Validation

<1:4.7p1-1
  • M
Information Exposure

*
  • M
Improper Authentication

*
  • H
CVE-2006-5794

<1:4.3p2-6
  • M
CVE-2006-4925

<1:5.1p1-5
  • H
Race Condition

<1:4.6p1-1
  • M
CVE-2006-5052

<1:4.6p1-1
  • H
Resource Management Errors

<1:4.3p2-4
  • M
Resource Management Errors

<1:3.8.1p1-4
  • M
CVE-2006-0225

<1:4.3p2-1
  • M
CVE-2005-2798

<1:4.2p1-1
  • M
CVE-2005-2797

<1:4.2p1-1
  • L
Credentials Management

<1:4.0p1-1
  • M
CVE-2004-2069

<1:3.8p1
  • M
Configuration

<1:3.6p1-1
  • M
Directory Traversal

<1:3.9p1-1
  • H
Race Condition

<1:3.8.1p1-8.sarge.4
  • C
CVE-2003-0786

<1:3.7.1p2
  • H
CVE-2003-0787

<1:3.7.1p2
  • H
CVE-2003-0695

<1:3.7.1
  • H
CVE-2003-0682

<1:3.6.1p2-9
  • C
CVE-2003-0693

<1:3.6.1p2-6.0
  • H
CVE-2003-0386

<1:3.8p1-1
  • M
CVE-2003-0190

<1:3.8.1p1-8.sarge.4
  • H
CVE-2002-0765

<1:3.3p1-0.0woody1
  • C
CVE-2002-0640

<1:3.4
  • C
CVE-2002-0639

<1:3.4
  • H
CVE-2001-1507

<1:3.0.1
  • H
CVE-2001-1459

<1:3.0.1p1-1
  • M
CVE-2000-0992

<1:3.9p1-1