Heap Out-of-Bounds Read in OpenSSH Affects Remote Authentication Services
CVE-2026-55654

3.7LOW

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 10; Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8
Vendor: CVE Published:; 23 June 2026

What is CVE-2026-55654?

A vulnerability was identified in OpenSSH that manifests as a heap out-of-bounds read during the cleanup of GSSAPI (Generic Security Service Application Programming Interface) indicators. This issue arises due to a missing trailing NULL termination in the auth-indicators array. If exploited by a remote attacker, particularly in scenarios where GSSAPI authentication is employed within a Kerberos environment, it has the potential to crash or abort the SSH authentication path. Such an exploit may lead to a denial of service, severely affecting the availability and reliability of the SSH service.

References

https://access.redhat.com/security/cve/CVE-2026-55654

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2462493

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 23, 2026
Vulnerability Reserved
Jun 16, 2026

CVE-2026-55654 Data

JSON

Red Hat

What is CVE-2026-55654?

References

CVSS V3.1

Timeline