CVE-2016-0777
openssh - security update
6.5
MEDIUM
CVSS 3.1
EPSS 77.4%
Description
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
How to fix CVE-2016-0777
To remediate CVE-2016-0777, upgrade the affected package to a fixed version below.
- Debian/openssh—upgrade to 1:7.1p2-1 or later
- —upgrade to 1:5.5p1-6+squeeze8 or later
- —upgrade to 1:6.0p1-4+deb7u3 or later
Is CVE-2016-0777 being exploited?
Likely — EPSS is 77.4%, placing CVE-2016-0777 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (3)
- from 0, < 1:7.1p2-1
- from 0, < 1:5.5p1-6+squeeze8
- from 0, < 1:6.0p1-4+deb7u3
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |