Tag: OpenSSH
-
What you need to know about regreSSHion: an OpenSSH server remote code execution vulnerability (CVE-2024-6387)
On 1 July 2024 we released a fix for the high-impact CVE-2024-6387 vulnerability, nicknamed regreSSHion, as part of the coordinated release …
-
Critical Advisory: OpenSSH Remote Code Execution Vulnerability
What Happened? A critical vulnerability, tracked as CVE-2023-38408, has been discovered in OpenSSH’s ssh-agent, specifically affecting …
-
“RegreSSHion” vulnerability in OpenSSH gives attackers root on Linux
Researchers have warned of a critical vulnerability affecting the OpenSSH networking utility that can be exploited to give attackers …
-
Qualys warns of OpenSSH vulnerability researchers are calling ‘extremely dangerous’
Researchers at cybersecurity software provider Qualys Inc. are warning of an OpenSSH vulnerability affecting more than 14 million …
-
FreeBSD 14.0 released, OpenSSH and OpenSSL updated
FreeBSD 14.0 is now available for the amd64, aarch64, i386, powerpc, powerpc64, powerpc64le, powerpcspe, armv7, and riscv64 architectures. …
-
A flaw in OpenSSH forwarded ssh-agent allows remote code execution
A new flaw in OpenSSH could be potentially exploited to run arbitrary commands remotely on compromised hosts under specific conditions. …
-
OpenSSH fixes double-free memory bug that’s pokable over the network
The open source operating system distribution OpenBSD is well-known amongst sysadmins, especially those who manage servers, for its focus …
-
OpenSSH to Release Security Patch for Remote Memory Corruption Vulnerability
The latest version of the OpenSSL library has been discovered as susceptible to a remote memory-corruption vulnerability on select systems. …
-
OpenSSH takes aim at ‘capture now, decrypt later’ quantum attacks
OpenSSH 9 is here, with updates aimed at dealing with cryptographically challenging quantum computers. The popular open-source SSH …
-
OpenSSH goes Post-Quantum, switches to qubit-busting crypto by default
Three years ago, we published an article with the dramatic-sounding title Serious Security: Post-Quantum Cryptography (and why we’re …
-
OpenSSH now defaults to protecting against quantum computer attacks
Post-quantum cryptography has arrived by default with the release of OpenSSH 9 and the adoption of the hybrid Streamlined NTRU Prime + …
-
Got $50k spare? Then you can crack SHA-1 – so OpenSSH is deprecating flawed hashing algo in a ‘near-future release’
The maintainers of OpenSSH, widely used for connecting securely to servers and devices over networks, have warned that the SHA-1 algorithm …
●●●