CVE-2016-10011

5.5MEDIUM

Key Information:

Vendor: OpenBSD
Status: Openssh
Vendor: CVE Published:; 5 January 2017

Summary

authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

References

https://security.netapp.com/advisory/ntap-20171130-0002/

http://www.openwall.com/lists/oss-security/2016/12/19/2

mailing-list

http://www.securitytracker.com/id/1037490

vdb-entry

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 5, 2017
Vulnerability Reserved
Dec 19, 2016