REDHAT-BUG-1384860
First published: Fri Oct 14 2016(Updated: )
A memory exhaustion issue in OpenSSH that can be triggered before user authentication was found. An unauthenticated attacker could consume approx. 400 MB of memory per each connection. The attacker could set up multiple such connections to run out of server’s memory. Affected versions: openssh-6.8p1, openssh-6.9p1, openssh-7.0p1, openssh-7.1p1, openssh-7.2p1, openssh-7.3p1. Upstream patch: <a href="http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c?rev=1.127&content-type=text/x-cvsweb-markup">http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c?rev=1.127&content-type=text/x-cvsweb-markup</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GSI OpenSSH | >=6.8p1<7.4p1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/kex.c?rev=1.127&content-type=text/x-cvsweb-markup
- https://github.com/openssh/openssh-portable/commit/ec165c392ca54317dbe3064a8c200de6531e89ad
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1384860#c5
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1384566
- http://seclists.org/oss-sec/2016/q4/185
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1387116
- http://seclists.org/oss-sec/2016/q4/191
- https://bugzilla.redhat.com/show_bug.cgi?id=1384860
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-8858
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/openssh
- canonical/gsi openssh