Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-59996 (GCVE-0-2026-59996)
Vulnerability from cvelistv5 – Published: 2026-07-08 00:07 – Updated: 2026-07-08 13:03- CWE-23 - Relative Path Traversal
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-59996",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T13:03:36.338882Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T13:03:41.694Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "OpenSSH",
"vendor": "OpenBSD",
"versions": [
{
"lessThan": "10.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-23",
"description": "CWE-23 Relative Path Traversal",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-08T00:07:07.759Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
},
{
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
}
],
"x_generator": {
"engine": "CVE-Request-form 0.0.1"
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2026-59996",
"datePublished": "2026-07-08T00:07:07.759Z",
"dateReserved": "2026-07-08T00:07:07.370Z",
"dateUpdated": "2026-07-08T13:03:41.694Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-59996",
"date": "2026-07-15",
"epss": "0.00241",
"percentile": "0.15107"
},
"microsoft_vex": {
"current_release_date": "2026-07-09T01:01:22.000Z",
"cve": "CVE-2026-59996",
"id": "msrc_CVE-2026-59996",
"initial_release_date": "2026-07-02T00:00:00.000Z",
"product_status:known_affected": "1",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-59996.json",
"version": "1"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-59996\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2026-07-08T01:16:28.557\",\"lastModified\":\"2026-07-09T17:14:27.620\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.\"}],\"affected\":[{\"source\":\"cve@mitre.org\",\"affectedData\":[{\"vendor\":\"OpenBSD\",\"product\":\"OpenSSH\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"10.4\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"cve@mitre.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L\",\"baseScore\":4.2,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":1.6,\"impactScore\":2.5},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":2.5}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-07-08T13:03:36.338882Z\",\"id\":\"CVE-2026-59996\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"cve@mitre.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-23\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.4\",\"matchCriteriaId\":\"947E3B1E-F0DF-47BC-87D8-358B55B164AD\"}]}]}],\"references\":[{\"url\":\"https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openssh.org/releasenotes.html#10.4p1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2026/07/06/5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]}]}}",
"redhat_vex": {
"aggregate_severity": "Moderate",
"current_release_date": "2026-07-15T14:36:25+00:00",
"cve": "CVE-2026-59996",
"id": "CVE-2026-59996",
"initial_release_date": "2026-07-08T00:07:07.759000+00:00",
"product_status:fixed": "3",
"product_status:known_affected": "41",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-59996.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-59996\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-07-08T13:03:36.338882Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-07-08T13:03:38.853Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.2, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"OpenBSD\", \"product\": \"OpenSSH\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"10.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://www.openwall.com/lists/oss-security/2026/07/06/5\"}, {\"url\": \"https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2\"}, {\"url\": \"https://www.openssh.org/releasenotes.html#10.4p1\"}], \"x_generator\": {\"engine\": \"CVE-Request-form 0.0.1\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-23\", \"description\": \"CWE-23 Relative Path Traversal\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.4\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2026-07-08T00:07:07.759Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-59996\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-08T13:03:41.694Z\", \"dateReserved\": \"2026-07-08T00:07:07.370Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2026-07-08T00:07:07.759Z\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
CERTFR-2026-AVI-0873
Vulnerability from certfr_avis - Published: 2026-07-15 - Updated: 2026-07-15
De multiples vulnérabilités ont été découvertes dans Microsoft Azure Linux. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Azure Linux | azl3 libXfont2 2.0.6-1 versions antérieures à 2.0.8-1 | ||
| Microsoft | Azure Linux | azl3 telegraf 1.31.0-23 versions antérieures à 1.31.0-25 | ||
| Microsoft | Azure Linux | azl3 clamav 1.5.2-3 versions antérieures à 1.5.3-1 | ||
| Microsoft | Azure Linux | azl3 glib 2.78.6-9 versions antérieures à 2.78.6-10 | ||
| Microsoft | Azure Linux | azl3 mtr 0.95-3 versions antérieures à 0.95-4 | ||
| Microsoft | Azure Linux | azl3 xorg-x11-server-Xwayland 24.1.12-1 versions antérieures à 24.1.13-1 | ||
| Microsoft | Azure Linux | azl3 python-msgpack 1.0.5-2 versions antérieures à 1.0.5-3 | ||
| Microsoft | Azure Linux | azl3 curl 8.11.1-9 versions antérieures à 8.11.1-10 | ||
| Microsoft | Azure Linux | azl3 erlang 26.2.5.21-2 versions antérieures à 26.2.5.21-3 | ||
| Microsoft | Azure Linux | azl3 openssh 9.8p1-8 versions antérieures à 9.8p1-9 | ||
| Microsoft | Azure Linux | azl3 python-setuptools 69.0.3-5 versions antérieures à 69.0.3-6 | ||
| Microsoft | Azure Linux | azl3 nodejs 24.17.0-1 versions antérieures à 24.17.0-2 | ||
| Microsoft | Azure Linux | azl3 vim 9.2.0735-1 versions antérieures à 9.2.0782-1 | ||
| Microsoft | Azure Linux | azl3 keras 3.3.3-7 versions antérieures à 3.3.3-8 | ||
| Microsoft | Azure Linux | azl3 perl-DBI 1.643-5 versions antérieures à 1.650-1 |
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "azl3 libXfont2 2.0.6-1 versions ant\u00e9rieures \u00e0 2.0.8-1",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 telegraf 1.31.0-23 versions ant\u00e9rieures \u00e0 1.31.0-25",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 clamav 1.5.2-3 versions ant\u00e9rieures \u00e0 1.5.3-1",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 glib 2.78.6-9 versions ant\u00e9rieures \u00e0 2.78.6-10",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 mtr 0.95-3 versions ant\u00e9rieures \u00e0 0.95-4",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 xorg-x11-server-Xwayland 24.1.12-1 versions ant\u00e9rieures \u00e0 24.1.13-1",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 python-msgpack 1.0.5-2 versions ant\u00e9rieures \u00e0 1.0.5-3",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 curl 8.11.1-9 versions ant\u00e9rieures \u00e0 8.11.1-10",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 erlang 26.2.5.21-2 versions ant\u00e9rieures \u00e0 26.2.5.21-3",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 openssh 9.8p1-8 versions ant\u00e9rieures \u00e0 9.8p1-9",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 python-setuptools 69.0.3-5 versions ant\u00e9rieures \u00e0 69.0.3-6",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 nodejs 24.17.0-1 versions ant\u00e9rieures \u00e0 24.17.0-2",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 vim 9.2.0735-1 versions ant\u00e9rieures \u00e0 9.2.0782-1",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 keras 3.3.3-7 versions ant\u00e9rieures \u00e0 3.3.3-8",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 perl-DBI 1.643-5 versions ant\u00e9rieures \u00e0 1.650-1",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-14380",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-14380"
},
{
"name": "CVE-2026-14461",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-14461"
},
{
"name": "CVE-2026-59996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59996"
},
{
"name": "CVE-2026-59995",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59995"
},
{
"name": "CVE-2026-59999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59999"
},
{
"name": "CVE-2026-20216",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20216"
},
{
"name": "CVE-2026-58013",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58013"
},
{
"name": "CVE-2026-8926",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-8926"
},
{
"name": "CVE-2026-20243",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20243"
},
{
"name": "CVE-2026-8458",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-8458"
},
{
"name": "CVE-2026-14739",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-14739"
},
{
"name": "CVE-2026-58015",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58015"
},
{
"name": "CVE-2026-56000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-56000"
},
{
"name": "CVE-2026-58014",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58014"
},
{
"name": "CVE-2026-20215",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20215"
},
{
"name": "CVE-2026-58012",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58012"
},
{
"name": "CVE-2026-59890",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59890"
},
{
"name": "CVE-2026-10536",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-10536"
},
{
"name": "CVE-2026-20213",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20213"
},
{
"name": "CVE-2026-8932",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-8932"
},
{
"name": "CVE-2026-11525",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-11525"
},
{
"name": "CVE-2026-59997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59997"
},
{
"name": "CVE-2026-58010",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58010"
},
{
"name": "CVE-2026-12064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12064"
},
{
"name": "CVE-2026-12480",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12480"
},
{
"name": "CVE-2026-20214",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20214"
},
{
"name": "CVE-2026-60002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-60002"
},
{
"name": "CVE-2026-9079",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9079"
},
{
"name": "CVE-2026-56003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-56003"
},
{
"name": "CVE-2026-59856",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59856"
},
{
"name": "CVE-2026-20217",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20217"
},
{
"name": "CVE-2026-58011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58011"
},
{
"name": "CVE-2026-58016",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-58016"
},
{
"name": "CVE-2026-60001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-60001"
},
{
"name": "CVE-2026-14740",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-14740"
},
{
"name": "CVE-2026-20244",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20244"
},
{
"name": "CVE-2026-57585",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-57585"
},
{
"name": "CVE-2026-8927",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-8927"
},
{
"name": "CVE-2026-60000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-60000"
},
{
"name": "CVE-2026-54908",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-54908"
},
{
"name": "CVE-2026-56002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-56002"
},
{
"name": "CVE-2026-54886",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-54886"
},
{
"name": "CVE-2026-56001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-56001"
},
{
"name": "CVE-2026-8286",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-8286"
}
],
"initial_release_date": "2026-07-15T00:00:00",
"last_revision_date": "2026-07-15T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0873",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-07-15T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Azure Linux. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Azure Linux",
"vendor_advisories": [
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58013",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58013"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-9079",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-9079"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-56001",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-56001"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20243",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20243"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-60001",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-60001"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20214",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20214"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-8927",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8927"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20216",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20216"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-54908",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-54908"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58011",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58011"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58012",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58012"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-8926",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8926"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-59997",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-59997"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-56002",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-56002"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-60002",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-60002"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-8932",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8932"
},
{
"published_at": "2026-07-03",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-57585",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-57585"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-12064",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12064"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20215",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20215"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-56000",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-56000"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-56003",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-56003"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-14380",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-14380"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58014",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58014"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-8286",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8286"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58015",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58015"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-8458",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-8458"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-11525",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-11525"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-59996",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-59996"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-10536",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-10536"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20213",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20213"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-59999",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-59999"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-59995",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-59995"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20244",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20244"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-14740",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-14740"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-14461",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-14461"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58016",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58016"
},
{
"published_at": "2026-07-07",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-12480",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12480"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-58010",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-58010"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-59856",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-59856"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-60000",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-60000"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-14739",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-14739"
},
{
"published_at": "2026-07-07",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-54886",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-54886"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-59890",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-59890"
},
{
"published_at": "2026-07-11",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-20217",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20217"
}
]
}
FKIE_CVE-2026-59996
Vulnerability from fkie_nvd - Published: 2026-07-08 01:16 - Updated: 2026-07-09 17:145.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | https://marc.info/?l=openssh-unix-dev&m=178333966933090&w=2 | Release Notes | |
| cve@mitre.org | https://www.openssh.org/releasenotes.html#10.4p1 | Release Notes | |
| cve@mitre.org | https://www.openwall.com/lists/oss-security/2026/07/06/5 | Mailing List, Release Notes |
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"product": "OpenSSH",
"vendor": "OpenBSD",
"versions": [
{
"lessThan": "10.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"source": "cve@mitre.org"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*",
"matchCriteriaId": "947E3B1E-F0DF-47BC-87D8-358B55B164AD",
"versionEndExcluding": "10.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations."
}
],
"id": "CVE-2026-59996",
"lastModified": "2026-07-09T17:14:27.620",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 2.5,
"source": "cve@mitre.org",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.5,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"ssvcV203": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"ssvcData": {
"id": "CVE-2026-59996",
"options": [
{
"exploitation": "none"
},
{
"automatable": "no"
},
{
"technicalImpact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-07-08T13:03:36.338882Z",
"version": "2.0.3"
}
}
]
},
"published": "2026-07-08T01:16:28.557",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Release Notes"
],
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"source": "cve@mitre.org",
"tags": [
"Release Notes"
],
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Release Notes"
],
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-23"
}
],
"source": "cve@mitre.org",
"type": "Secondary"
}
]
}
GHSA-8V2X-FHQ9-4FV3
Vulnerability from github – Published: 2026-07-08 03:30 – Updated: 2026-07-08 03:30scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.
{
"affected": [],
"aliases": [
"CVE-2026-59996"
],
"database_specific": {
"cwe_ids": [
"CWE-23"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-07-08T01:16:28Z",
"severity": "MODERATE"
},
"details": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.",
"id": "GHSA-8v2x-fhq9-4fv3",
"modified": "2026-07-08T03:30:27Z",
"published": "2026-07-08T03:30:27Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-59996"
},
{
"type": "WEB",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"type": "WEB",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"type": "WEB",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L",
"type": "CVSS_V3"
}
]
}
MSRC_CVE-2026-59996
Vulnerability from csaf_microsoft - Published: 2026-07-02 00:00 - Updated: 2026-07-12 14:50| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2026-59996 scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-59996.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.",
"tracking": {
"current_release_date": "2026-07-12T14:50:58.000Z",
"generator": {
"date": "2026-07-13T08:50:21.987Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2026-59996",
"initial_release_date": "2026-07-02T00:00:00.000Z",
"revision_history": [
{
"date": "2026-07-09T01:01:22.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2026-07-12T14:50:58.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 openssh 0:9.8p1-8.azl3",
"product": {
"name": "\u003cazl3 openssh 0:9.8p1-8.azl3",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 openssh 0:9.8p1-8.azl3",
"product": {
"name": "azl3 openssh 0:9.8p1-8.azl3",
"product_id": "21499"
}
}
],
"category": "product_name",
"name": "openssh"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 openssh 0:9.8p1-8.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 openssh 0:9.8p1-8.azl3 as a component of Azure Linux 3.0",
"product_id": "21499-17084"
},
"product_reference": "21499",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-59996",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"notes": [
{
"category": "general",
"text": "mitre",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"21499-17084"
],
"known_affected": [
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-59996 scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-59996.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T01:01:22.000Z",
"details": "0:9.8p1-9.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.2,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"17084-1"
]
}
],
"title": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations."
}
]
}
RHSA-2026:37382
Vulnerability from csaf_redhat - Published: 2026-07-09 14:40 - Updated: 2026-07-15 14:36A flaw was found in OpenSSH. The `sftp` client, when used to download files from a malicious server with the 'sftp server:/path .' command, does not properly restrict where those files are saved. This allows an attacker to control the download location, potentially overwriting existing files or placing malicious files in sensitive directories on the client system, which could compromise system integrity.
A flaw was found in OpenSSH, a widely used tool for secure remote access. When a user attempts to copy files between two different remote systems using the `scp` command, the file might be incorrectly placed in a directory above the intended destination. This unintended file placement could lead to data integrity issues or, in some cases, unauthorized access to sensitive information if files are stored in an exposed location.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Hardened Images:openssh-main@aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Hardened Images:openssh-main@src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Hardened Images:openssh-main@x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in OpenSSH. The internal-sftp component within sshd incorrectly processes command-line arguments, recognizing only the first nine. This limitation can prevent the application of intended security configurations for SFTP (SSH File Transfer Protocol) connections, potentially leading to a bypass of security properties.
A flaw was found in OpenSSH. The sshd component has an undocumented security-relevant behavior where GSSAPIStrictAcceptorCheck has no value when the server is in a Windows Active Directory environment. This could lead to unintended information disclosure and impact data integrity.
A flaw was found in `sshd`, the OpenSSH server daemon. When `DisableForwarding=yes` is configured to prevent network traffic forwarding, it incorrectly fails to take precedence over `PermitTunnel=yes`. This allows a remote attacker to bypass intended security restrictions and establish a tunnel, potentially leading to unauthorized network access or circumvention of security policies, even when forwarding is explicitly disabled.
A flaw was found in OpenSSH's Secure Shell Daemon (sshd). This vulnerability allows a remote attacker to cause a denial of service by initiating an excessive number of authentication attempts. The issue arises from the mishandling of the MaxAuthTries setting specifically when using GSSAPIAuthentication, leading to resource exhaustion.
A flaw was found in OpenSSH's SSH daemon (sshd). A remote attacker could exploit this vulnerability by repeatedly attempting authentication. The flaw allows the attacker to bypass the intended minimum authentication delay, which can facilitate brute-force attacks. This makes it easier for an attacker to guess valid credentials, potentially leading to unauthorized access or a denial of service.
A flaw was found in OpenSSH. A remote attacker could exploit a use-after-free vulnerability on the client side when a server changes its host key during a key re-exchange. This could lead to high impact on confidentiality and integrity, and low impact on availability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Hardened Images:openssh-main@aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Hardened Images:openssh-main@src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Hardened Images:openssh-main@x86_64 | — |
Vendor Fix
fix
Workaround
|
| URL | Category |
|---|---|
| https://access.redhat.com/errata/RHSA-2026:37382 | self |
| https://images.redhat.com/ | external |
| https://access.redhat.com/security/cve/CVE-2026-59996 | external |
| https://access.redhat.com/security/updates/classi… | external |
| https://access.redhat.com/security/cve/CVE-2026-59998 | external |
| https://access.redhat.com/security/cve/CVE-2026-60001 | external |
| https://access.redhat.com/security/cve/CVE-2026-60002 | external |
| https://access.redhat.com/security/cve/CVE-2026-59995 | external |
| https://access.redhat.com/security/cve/CVE-2026-59999 | external |
| https://access.redhat.com/security/cve/CVE-2026-59997 | external |
| https://access.redhat.com/security/cve/CVE-2026-60000 | external |
| https://security.access.redhat.com/data/csaf/v2/a… | self |
| https://access.redhat.com/security/cve/CVE-2026-59995 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497927 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-59995 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-59995 | external |
| https://marc.info/?l=openssh-unix-dev&m=178333966… | external |
| https://www.openssh.org/releasenotes.html#10.4p1 | external |
| https://www.openwall.com/lists/oss-security/2026/… | external |
| https://access.redhat.com/security/cve/CVE-2026-59996 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497944 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-59996 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-59996 | external |
| https://access.redhat.com/security/cve/CVE-2026-59997 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497929 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-59997 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-59997 | external |
| https://access.redhat.com/security/cve/CVE-2026-59998 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497935 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-59998 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-59998 | external |
| https://access.redhat.com/security/cve/CVE-2026-59999 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497942 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-59999 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-59999 | external |
| https://access.redhat.com/security/cve/CVE-2026-60000 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497946 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-60000 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-60000 | external |
| https://access.redhat.com/security/cve/CVE-2026-60001 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497938 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-60001 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-60001 | external |
| https://access.redhat.com/security/cve/CVE-2026-60002 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2497936 | external |
| https://www.cve.org/CVERecord?id=CVE-2026-60002 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2026-60002 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Hardened Images RPMs is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "This update includes the following RPMs:\n\nopenssh:\n * openssh-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-askpass-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-clients-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-keycat-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-keysign-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-server-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-sk-dummy-10.4p1-1.hum1 (aarch64, x86_64)\n * openssh-10.4p1-1.hum1.src (src)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:37382",
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
},
{
"category": "external",
"summary": "https://images.redhat.com/",
"url": "https://images.redhat.com/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-59996",
"url": "https://access.redhat.com/security/cve/CVE-2026-59996"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-59998",
"url": "https://access.redhat.com/security/cve/CVE-2026-59998"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-60001",
"url": "https://access.redhat.com/security/cve/CVE-2026-60001"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-60002",
"url": "https://access.redhat.com/security/cve/CVE-2026-60002"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-59995",
"url": "https://access.redhat.com/security/cve/CVE-2026-59995"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-59999",
"url": "https://access.redhat.com/security/cve/CVE-2026-59999"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-59997",
"url": "https://access.redhat.com/security/cve/CVE-2026-59997"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-60000",
"url": "https://access.redhat.com/security/cve/CVE-2026-60000"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_37382.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
"tracking": {
"current_release_date": "2026-07-15T14:36:13+00:00",
"generator": {
"date": "2026-07-15T14:36:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.6"
}
},
"id": "RHSA-2026:37382",
"initial_release_date": "2026-07-09T14:40:15+00:00",
"revision_history": [
{
"date": "2026-07-09T14:40:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T16:39:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-15T14:36:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Hardened Images",
"product": {
"name": "Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:hummingbird:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Hardened Images"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-main@aarch64",
"product": {
"name": "openssh-main@aarch64",
"product_id": "openssh-main@aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@10.4p1-1.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-main@src",
"product": {
"name": "openssh-main@src",
"product_id": "openssh-main@src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@10.4p1-1.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssh-main@x86_64",
"product": {
"name": "openssh-main@x86_64",
"product_id": "openssh-main@x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssh@10.4p1-1.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-main@aarch64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:openssh-main@aarch64"
},
"product_reference": "openssh-main@aarch64",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-main@src as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:openssh-main@src"
},
"product_reference": "openssh-main@src",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssh-main@x86_64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:openssh-main@x86_64"
},
"product_reference": "openssh-main@x86_64",
"relates_to_product_reference": "Red Hat Hardened Images"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-59995",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-07-08T01:01:01.518880+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. The `sftp` client, when used to download files from a malicious server with the \u0027sftp server:/path .\u0027 command, does not properly restrict where those files are saved. This allows an attacker to control the download location, potentially overwriting existing files or placing malicious files in sensitive directories on the client system, which could compromise system integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: sftp client allows attacker to control downloaded file location",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-59995"
},
{
"category": "external",
"summary": "RHBZ#2497927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-59995",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59995"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-59995",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-59995"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:04:49.995000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssh: OpenSSH: sftp client allows attacker to control downloaded file location"
},
{
"cve": "CVE-2026-59996",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-07-08T01:02:02.730076+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497944"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH, a widely used tool for secure remote access. When a user attempts to copy files between two different remote systems using the `scp` command, the file might be incorrectly placed in a directory above the intended destination. This unintended file placement could lead to data integrity issues or, in some cases, unauthorized access to sensitive information if files are stored in an exposed location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Conditions for Exploitation: Exploitation requires specific user actions and conditions, as the vulnerability only triggers when a user explicitly initiates a file copy between two remote destinations using the scp command.\n\nImpact Limitations: The boundaries of the potential impact are highly contained. The flaw only results in unintended file placement within the parent directory of the target destination. It does not inherently lead to arbitrary code execution, denial of service, or privilege escalation, and any potential data exposure relies heavily on the existing permissions of the parent directory.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-59996"
},
{
"category": "external",
"summary": "RHBZ#2497944",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497944"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-59996",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59996"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-59996",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-59996"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:07:07.759000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
},
{
"category": "workaround",
"details": "To mitigate this issue, users should avoid performing `scp` operations directly between two remote destinations. Instead, consider copying files from the first remote host to a local machine, and then from the local machine to the second remote host. Alternatively, use `sftp` or `rsync` for remote file transfers, as these utilities are not affected by this specific vulnerability.",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy"
},
{
"cve": "CVE-2026-59997",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2026-07-08T01:01:08.930287+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497929"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. The internal-sftp component within sshd incorrectly processes command-line arguments, recognizing only the first nine. This limitation can prevent the application of intended security configurations for SFTP (SSH File Transfer Protocol) connections, potentially leading to a bypass of security properties.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: SFTP security bypass due to command-line argument parsing flaw",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-59997"
},
{
"category": "external",
"summary": "RHBZ#2497929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-59997",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59997"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-59997",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-59997"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:09:04.920000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: OpenSSH: SFTP security bypass due to command-line argument parsing flaw"
},
{
"cve": "CVE-2026-59998",
"cwe": {
"id": "CWE-909",
"name": "Missing Initialization of Resource"
},
"discovery_date": "2026-07-08T01:01:30.478799+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497935"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. The sshd component has an undocumented security-relevant behavior where GSSAPIStrictAcceptorCheck has no value when the server is in a Windows Active Directory environment. This could lead to unintended information disclosure and impact data integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-59998"
},
{
"category": "external",
"summary": "RHBZ#2497935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-59998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59998"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-59998",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-59998"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:11:05.183000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory"
},
{
"cve": "CVE-2026-59999",
"cwe": {
"id": "CWE-358",
"name": "Improperly Implemented Security Check for Standard"
},
"discovery_date": "2026-07-08T01:01:55.619428+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497942"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in `sshd`, the OpenSSH server daemon. When `DisableForwarding=yes` is configured to prevent network traffic forwarding, it incorrectly fails to take precedence over `PermitTunnel=yes`. This allows a remote attacker to bypass intended security restrictions and establish a tunnel, potentially leading to unauthorized network access or circumvention of security policies, even when forwarding is explicitly disabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-59999"
},
{
"category": "external",
"summary": "RHBZ#2497942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497942"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-59999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59999"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-59999",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-59999"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:13:08.397000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options"
},
{
"cve": "CVE-2026-60000",
"cwe": {
"id": "CWE-307",
"name": "Improper Restriction of Excessive Authentication Attempts"
},
"discovery_date": "2026-07-08T01:02:09.730221+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497946"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH\u0027s Secure Shell Daemon (sshd). This vulnerability allows a remote attacker to cause a denial of service by initiating an excessive number of authentication attempts. The issue arises from the mishandling of the MaxAuthTries setting specifically when using GSSAPIAuthentication, leading to resource exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: Denial of Service via excessive GSSAPI authentication attempts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-60000"
},
{
"category": "external",
"summary": "RHBZ#2497946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497946"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-60000",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-60000"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-60000",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-60000"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:14:31.230000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: OpenSSH: Denial of Service via excessive GSSAPI authentication attempts"
},
{
"cve": "CVE-2026-60001",
"cwe": {
"id": "CWE-307",
"name": "Improper Restriction of Excessive Authentication Attempts"
},
"discovery_date": "2026-07-08T01:01:40.680574+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH\u0027s SSH daemon (sshd). A remote attacker could exploit this vulnerability by repeatedly attempting authentication. The flaw allows the attacker to bypass the intended minimum authentication delay, which can facilitate brute-force attacks. This makes it easier for an attacker to guess valid credentials, potentially leading to unauthorized access or a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: Brute-force attacks facilitated due to insufficient authentication delay",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-60001"
},
{
"category": "external",
"summary": "RHBZ#2497938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-60001",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-60001"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-60001",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-60001"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:16:15.497000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssh: OpenSSH: Brute-force attacks facilitated due to insufficient authentication delay"
},
{
"cve": "CVE-2026-60002",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2026-07-08T01:01:33.808610+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2497936"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in OpenSSH. A remote attacker could exploit a use-after-free vulnerability on the client side when a server changes its host key during a key re-exchange. This could lead to high impact on confidentiality and integrity, and low impact on availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssh: OpenSSH: Use-after-free vulnerability during host key re-exchange on the client side",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in OpenSSH client could allow a malicious SSH server to execute arbitrary code on the connecting client due to a use-after-free vulnerability during host key re-exchange. While requiring a connection to a specially crafted server, the potential for high impact on client confidentiality and integrity elevates the severity beyond Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-60002"
},
{
"category": "external",
"summary": "RHBZ#2497936",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2497936"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-60002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-60002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-60002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-60002"
},
{
"category": "external",
"summary": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2",
"url": "https://marc.info/?l=openssh-unix-dev\u0026m=178333966933090\u0026w=2"
},
{
"category": "external",
"summary": "https://www.openssh.org/releasenotes.html#10.4p1",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2026/07/06/5",
"url": "https://www.openwall.com/lists/oss-security/2026/07/06/5"
}
],
"release_date": "2026-07-08T00:17:33.058000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T14:40:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37382"
},
{
"category": "workaround",
"details": "To mitigate this issue, OpenSSH clients should only connect to trusted SSH servers. Enforcing strict host key checking and carefully managing `known_hosts` files can help prevent connections to servers with unexpected or altered host keys, thereby reducing exposure to this client-side vulnerability.",
"product_ids": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:openssh-main@aarch64",
"Red Hat Hardened Images:openssh-main@src",
"Red Hat Hardened Images:openssh-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssh: OpenSSH: Use-after-free vulnerability during host key re-exchange on the client side"
}
]
}
ubuntu-cve-2026-59996
Vulnerability from osv_ubuntu
scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:6.6p1-2ubuntu2.13+esm2"
},
{
"binary_name": "openssh-server",
"binary_version": "1:6.6p1-2ubuntu2.13+esm2"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:6.6p1-2ubuntu2.13+esm2"
},
{
"binary_name": "ssh",
"binary_version": "1:6.6p1-2ubuntu2.13+esm2"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:6.6p1-2ubuntu2.13+esm2"
},
{
"binary_name": "ssh-krb5",
"binary_version": "1:6.6p1-2ubuntu2.13+esm2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:6.6p1-2ubuntu2.13+esm2?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:6.2p2-6",
"1:6.2p2-6ubuntu1",
"1:6.4p1-1",
"1:6.4p1-2",
"1:6.5p1-1",
"1:6.5p1-2",
"1:6.5p1-3",
"1:6.5p1-4",
"1:6.5p1-6",
"1:6.6p1-1",
"1:6.6p1-2",
"1:6.6p1-2ubuntu1",
"1:6.6p1-2ubuntu2",
"1:6.6p1-2ubuntu2.2",
"1:6.6p1-2ubuntu2.3",
"1:6.6p1-2ubuntu2.4",
"1:6.6p1-2ubuntu2.6",
"1:6.6p1-2ubuntu2.7",
"1:6.6p1-2ubuntu2.8",
"1:6.6p1-2ubuntu2.10",
"1:6.6p1-2ubuntu2.11",
"1:6.6p1-2ubuntu2.12",
"1:6.6p1-2ubuntu2.13",
"1:6.6p1-2ubuntu2.13+esm1",
"1:6.6p1-2ubuntu2.13+esm2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
},
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
},
{
"binary_name": "openssh-server",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
},
{
"binary_name": "ssh",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
},
{
"binary_name": "ssh-krb5",
"binary_version": "1:7.2p2-4ubuntu2.10+esm8"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:7.2p2-4ubuntu2.10+esm8?arch=source\u0026distro=esm-infra-legacy/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:6.9p1-2",
"1:6.9p1-3",
"1:7.1p1-1",
"1:7.1p1-3",
"1:7.1p1-4",
"1:7.1p1-6",
"1:7.1p2-1",
"1:7.1p2-2",
"1:7.2p1-1",
"1:7.2p2-1",
"1:7.2p2-2",
"1:7.2p2-3",
"1:7.2p2-4",
"1:7.2p2-4ubuntu1",
"1:7.2p2-4ubuntu2.1",
"1:7.2p2-4ubuntu2.2",
"1:7.2p2-4ubuntu2.4",
"1:7.2p2-4ubuntu2.5",
"1:7.2p2-4ubuntu2.6",
"1:7.2p2-4ubuntu2.7",
"1:7.2p2-4ubuntu2.8",
"1:7.2p2-4ubuntu2.10",
"1:7.2p2-4ubuntu2.10+esm1",
"1:7.2p2-4ubuntu2.10+esm2",
"1:7.2p2-4ubuntu2.10+esm3",
"1:7.2p2-4ubuntu2.10+esm4",
"1:7.2p2-4ubuntu2.10+esm5",
"1:7.2p2-4ubuntu2.10+esm6",
"1:7.2p2-4ubuntu2.10+esm7",
"1:7.2p2-4ubuntu2.10+esm8"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "openssh-client-hmac",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "openssh-server",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "openssh-server-hmac",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "ssh",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
},
{
"binary_name": "ssh-krb5",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.7"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS:16.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:7.2p2-4ubuntu2.fips.2.10.7?arch=source\u0026distro=fips-updates/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.2p2-4ubuntu2.fips.2.2.3",
"1:7.2p2-4ubuntu2.fips.2.4.1",
"1:7.2p2-4ubuntu2.fips.2.4.2",
"1:7.2p2-4ubuntu2.fips.2.8.1",
"1:7.2p2-4ubuntu2.fips.2.10.1",
"1:7.2p2-4ubuntu2.fips.2.10.2",
"1:7.2p2-4ubuntu2.fips.2.10.3",
"1:7.2p2-4ubuntu2.fips.2.10.4",
"1:7.2p2-4ubuntu2.fips.2.10.5",
"1:7.2p2-4ubuntu2.fips.2.10.6",
"1:7.2p2-4ubuntu2.fips.2.10.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "openssh-client-hmac",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "openssh-server",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "openssh-server-hmac",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "ssh",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
},
{
"binary_name": "ssh-krb5",
"binary_version": "1:7.2p2-4ubuntu2.fips.2.10.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS:16.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:7.2p2-4ubuntu2.fips.2.10.1?arch=source\u0026distro=fips/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.2p2-4ubuntu2.fips.2.2",
"1:7.2p2-4ubuntu2.fips.2.2.1",
"1:7.2p2-4ubuntu2.fips.2.10.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:7.6p1-4ubuntu0.7+esm4"
},
{
"binary_name": "openssh-server",
"binary_version": "1:7.6p1-4ubuntu0.7+esm4"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:7.6p1-4ubuntu0.7+esm4"
},
{
"binary_name": "ssh",
"binary_version": "1:7.6p1-4ubuntu0.7+esm4"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:7.6p1-4ubuntu0.7+esm4"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:7.6p1-4ubuntu0.7+esm4?arch=source\u0026distro=esm-infra/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-10",
"1:7.6p1-4",
"1:7.6p1-4ubuntu0.1",
"1:7.6p1-4ubuntu0.2",
"1:7.6p1-4ubuntu0.3",
"1:7.6p1-4ubuntu0.5",
"1:7.6p1-4ubuntu0.6",
"1:7.6p1-4ubuntu0.7",
"1:7.6p1-4ubuntu0.7+esm1",
"1:7.6p1-4ubuntu0.7+esm2",
"1:7.6p1-4ubuntu0.7+esm3",
"1:7.6p1-4ubuntu0.7+esm4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.5p1-10"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "openssh-ssh1",
"purl": "pkg:deb/ubuntu/openssh-ssh1@1:7.5p1-10?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-8",
"1:7.5p1-9",
"1:7.5p1-9build1",
"1:7.5p1-10"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "openssh-client-hmac",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "openssh-server",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "openssh-server-hmac",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "ssh",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.10"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:18.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:7.9p1-10~ubuntu18.04.fips.0.10?arch=source\u0026distro=fips-updates/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.9p1-10~ubuntu18.04.fips.0.1",
"1:7.9p1-10~ubuntu18.04.fips.0.2",
"1:7.9p1-10~ubuntu18.04.fips.0.3",
"1:7.9p1-10~ubuntu18.04.fips.0.4",
"1:7.9p1-10~ubuntu18.04.fips.0.5",
"1:7.9p1-10~ubuntu18.04.fips.0.6",
"1:7.9p1-10~ubuntu18.04.fips.0.7",
"1:7.9p1-10~ubuntu18.04.fips.0.8",
"1:7.9p1-10~ubuntu18.04.fips.0.9",
"1:7.9p1-10~ubuntu18.04.fips.0.10"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "openssh-client-hmac",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "openssh-server",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "openssh-server-hmac",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "ssh",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:7.9p1-10~ubuntu18.04.fips.0.2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS:18.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:7.9p1-10~ubuntu18.04.fips.0.2?arch=source\u0026distro=fips/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.9p1-10~ubuntu18.04.fips.0.1",
"1:7.9p1-10~ubuntu18.04.fips.0.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:8.2p1-4ubuntu0.13+esm1"
},
{
"binary_name": "openssh-server",
"binary_version": "1:8.2p1-4ubuntu0.13+esm1"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:8.2p1-4ubuntu0.13+esm1"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:8.2p1-4ubuntu0.13+esm1"
},
{
"binary_name": "ssh",
"binary_version": "1:8.2p1-4ubuntu0.13+esm1"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:8.2p1-4ubuntu0.13+esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:20.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:8.2p1-4ubuntu0.13+esm1?arch=source\u0026distro=esm-infra/focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:8.0p1-6build1",
"1:8.1p1-1",
"1:8.1p1-5",
"1:8.2p1-4",
"1:8.2p1-4ubuntu0.1",
"1:8.2p1-4ubuntu0.2",
"1:8.2p1-4ubuntu0.3",
"1:8.2p1-4ubuntu0.4",
"1:8.2p1-4ubuntu0.5",
"1:8.2p1-4ubuntu0.7",
"1:8.2p1-4ubuntu0.8",
"1:8.2p1-4ubuntu0.9",
"1:8.2p1-4ubuntu0.10",
"1:8.2p1-4ubuntu0.11",
"1:8.2p1-4ubuntu0.12",
"1:8.2p1-4ubuntu0.13",
"1:8.2p1-4ubuntu0.13+esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.5p1-11build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "openssh-ssh1",
"purl": "pkg:deb/ubuntu/openssh-ssh1@1:7.5p1-11build1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-11build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.13.1"
},
{
"binary_name": "openssh-server",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.13.1"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.13.1"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.13.1"
},
{
"binary_name": "ssh",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.13.1"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.13.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:20.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:8.2p1-4ubuntu0.fips.0.13.1?arch=source\u0026distro=fips-updates/focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:8.2p1-4ubuntu0.fips.0.2.1",
"1:8.2p1-4ubuntu0.fips.0.4.0",
"1:8.2p1-4ubuntu0.fips.0.5.0",
"1:8.2p1-4ubuntu0.fips.0.7",
"1:8.2p1-4ubuntu0.fips.0.8",
"1:8.2p1-4ubuntu0.fips.0.9",
"1:8.2p1-4ubuntu0.fips.0.10",
"1:8.2p1-4ubuntu0.fips.0.11",
"1:8.2p1-4ubuntu0.fips.0.12",
"1:8.2p1-4ubuntu0.fips.0.13",
"1:8.2p1-4ubuntu0.fips.0.13.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.2.1"
},
{
"binary_name": "openssh-server",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.2.1"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.2.1"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.2.1"
},
{
"binary_name": "ssh",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.2.1"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:8.2p1-4ubuntu0.fips.0.2.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS:20.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:8.2p1-4ubuntu0.fips.0.2.1?arch=source\u0026distro=fips/focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:8.2p1-4ubuntu0.fips.0.2.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:8.9p1-3ubuntu0.16"
},
{
"binary_name": "openssh-server",
"binary_version": "1:8.9p1-3ubuntu0.16"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:8.9p1-3ubuntu0.16"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:8.9p1-3ubuntu0.16"
},
{
"binary_name": "ssh",
"binary_version": "1:8.9p1-3ubuntu0.16"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:8.9p1-3ubuntu0.16"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:8.9p1-3ubuntu0.16?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:8.9p1-3ubuntu0.16"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:8.4p1-6ubuntu2",
"1:8.7p1-2",
"1:8.7p1-2build1",
"1:8.7p1-4",
"1:8.8p1-1",
"1:8.9p1-3",
"1:8.9p1-3ubuntu0.1",
"1:8.9p1-3ubuntu0.3",
"1:8.9p1-3ubuntu0.4",
"1:8.9p1-3ubuntu0.5",
"1:8.9p1-3ubuntu0.6",
"1:8.9p1-3ubuntu0.7",
"1:8.9p1-3ubuntu0.10",
"1:8.9p1-3ubuntu0.11",
"1:8.9p1-3ubuntu0.13",
"1:8.9p1-3ubuntu0.14",
"1:8.9p1-3ubuntu0.15"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.5p1-13"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "openssh-ssh1",
"purl": "pkg:deb/ubuntu/openssh-ssh1@1:7.5p1-13?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-12",
"1:7.5p1-12build1",
"1:7.5p1-13"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "openssh-server",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "ssh",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-preview:22.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:8.9p1-3ubuntu1.fips.0~ppa3?arch=source\u0026distro=fips-preview/jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:8.9p1-3ubuntu0.4+Fips1",
"1:8.9p1-3ubuntu0.4+Fips3",
"1:8.9p1-3ubuntu1.fips.0~ppa3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "openssh-server",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "ssh",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:8.9p1-3ubuntu1.fips.0~ppa3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:22.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:8.9p1-3ubuntu1.fips.0~ppa3?arch=source\u0026distro=fips-updates/jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:8.9p1-3ubuntu0.4+Fips1",
"1:8.9p1-3ubuntu0.4+Fips3",
"1:8.9p1-3ubuntu0.6+Fips1",
"1:8.9p1-3ubuntu0.7+Fips1",
"1:8.9p1-3ubuntu0.10+Fips1",
"1:8.9p1-3ubuntu0.11+Fips1",
"1:8.9p1-3ubuntu0.13+Fips1",
"1:8.9p1-3ubuntu0.14+Fips1",
"1:8.9p1-3ubuntu0.15+Fips1",
"1:8.9p1-3ubuntu0.15+Fips3",
"1:8.9p1-3ubuntu1.fips.0~ppa3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:9.6p1-3ubuntu13.18"
},
{
"binary_name": "openssh-server",
"binary_version": "1:9.6p1-3ubuntu13.18"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:9.6p1-3ubuntu13.18"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:9.6p1-3ubuntu13.18"
},
{
"binary_name": "ssh",
"binary_version": "1:9.6p1-3ubuntu13.18"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:9.6p1-3ubuntu13.18"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:9.6p1-3ubuntu13.18?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:9.6p1-3ubuntu13.18"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:9.3p1-1ubuntu3",
"1:9.4p1-1ubuntu1",
"1:9.6p1-3ubuntu1",
"1:9.6p1-3ubuntu2",
"1:9.6p1-3ubuntu11",
"1:9.6p1-3ubuntu12",
"1:9.6p1-3ubuntu13",
"1:9.6p1-3ubuntu13.3",
"1:9.6p1-3ubuntu13.4",
"1:9.6p1-3ubuntu13.5",
"1:9.6p1-3ubuntu13.7",
"1:9.6p1-3ubuntu13.8",
"1:9.6p1-3ubuntu13.9",
"1:9.6p1-3ubuntu13.11",
"1:9.6p1-3ubuntu13.12",
"1:9.6p1-3ubuntu13.13",
"1:9.6p1-3ubuntu13.14",
"1:9.6p1-3ubuntu13.15",
"1:9.6p1-3ubuntu13.16"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.5p1-16"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "openssh-ssh1",
"purl": "pkg:deb/ubuntu/openssh-ssh1@1:7.5p1-16?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-14",
"1:7.5p1-15",
"1:7.5p1-15build1",
"1:7.5p1-16"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:9.6p1-3ubuntu13.16+Fips2"
},
{
"binary_name": "openssh-server",
"binary_version": "1:9.6p1-3ubuntu13.16+Fips2"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:9.6p1-3ubuntu13.16+Fips2"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:9.6p1-3ubuntu13.16+Fips2"
},
{
"binary_name": "ssh",
"binary_version": "1:9.6p1-3ubuntu13.16+Fips2"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:9.6p1-3ubuntu13.16+Fips2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:24.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:9.6p1-3ubuntu13.16+Fips2?arch=source\u0026distro=fips-updates/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:9.6p1-3ubuntu13.7+Fips1",
"1:9.6p1-3ubuntu13.12+Fips1",
"1:9.6p1-3ubuntu13.13+Fips1",
"1:9.6p1-3ubuntu13.14+Fips1",
"1:9.6p1-3ubuntu13.15+Fips1",
"1:9.6p1-3ubuntu13.16+Fips1",
"1:9.6p1-3ubuntu13.16+Fips2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "openssh-client-gssapi",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "openssh-server",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "openssh-server-gssapi",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "ssh",
"binary_version": "1:10.0p1-5ubuntu5.4"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:10.0p1-5ubuntu5.4"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:10.0p1-5ubuntu5.4?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:9.9p1-3ubuntu3",
"1:9.9p1-3ubuntu3.1",
"1:10.0p1-5ubuntu2",
"1:10.0p1-5ubuntu3",
"1:10.0p1-5ubuntu4",
"1:10.0p1-5ubuntu5",
"1:10.0p1-5ubuntu5.1",
"1:10.0p1-5ubuntu5.4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.5p1-17"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "openssh-ssh1",
"purl": "pkg:deb/ubuntu/openssh-ssh1@1:7.5p1-17?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-17"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "openssh-client",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "openssh-client-gssapi",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "openssh-server",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "openssh-server-gssapi",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "openssh-sftp-server",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "openssh-tests",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "ssh",
"binary_version": "1:10.2p1-2ubuntu3.4"
},
{
"binary_name": "ssh-askpass-gnome",
"binary_version": "1:10.2p1-2ubuntu3.4"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "openssh",
"purl": "pkg:deb/ubuntu/openssh@1:10.2p1-2ubuntu3.4?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:10.2p1-2ubuntu3.4"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:10.0p1-5ubuntu5",
"1:10.2p1-2ubuntu1",
"1:10.2p1-2ubuntu3",
"1:10.2p1-2ubuntu3.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "openssh-client-ssh1",
"binary_version": "1:7.5p1-18"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "openssh-ssh1",
"purl": "pkg:deb/ubuntu/openssh-ssh1@1:7.5p1-18?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1:7.5p1-17",
"1:7.5p1-18"
]
}
],
"aliases": [],
"details": "scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations.",
"id": "UBUNTU-CVE-2026-59996",
"modified": "2026-07-13T18:42:49Z",
"published": "2026-07-08T01:16:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-59996"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-59996"
},
{
"type": "REPORT",
"url": "https://www.openssh.org/releasenotes.html#10.4p1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-8533-1"
}
],
"related": [
"USN-8533-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2026-59996"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.