| VID |
14261 |
| Severity |
30 |
| Port |
22 |
| Protocol |
TCP |
| Class |
SSH |
| Detailed Description |
ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.
* Note: This check solely relied on the banner of the remote OpenSSH server to assess this vulnerability, so this might be a false positive.
* References:
https://www.openwall.com/lists/oss-security/2021/03/03/1
https://www.openssh.com/txt/release-8.5
* Platforms Affected:
OpenSSH prior to 8.5
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of OpenSSH (8.5 or later), available from the OpenSSH Web site at http://www.openssh.org/ |
| Related URL |
CVE-2021-28041 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
