ID

VAR-201601-0029


CVE

CVE-2016-0777


TITLE

OpenSSH Security hole

Trust: 0.6

sources: CNNVD: CNNVD-201601-249

DESCRIPTION

The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key. OpenSSH is prone to a heap-based buffer-overflow vulnerability. Successful exploits may allow attackers to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Successfully exploiting this issue allows attackers to obtain sensitive information that may aid in further attacks. This tool is an open source implementation of the SSH protocol, supports encryption of all transmissions, and can effectively prevent eavesdropping, connection hijacking, and other network-level attacks. The following versions are affected: OpenSSH 5.x, 6.x, 7.x prior to 7.1p2. ============================================================================ Ubuntu Security Notice USN-2869-1 January 14, 2016 openssh vulnerabilities ============================================================================ A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.10 - Ubuntu 15.04 - Ubuntu 14.04 LTS - Ubuntu 12.04 LTS Summary: OpenSSH could be made to expose sensitive information over the network. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: openssh-client 1:6.9p1-2ubuntu0.1 Ubuntu 15.04: openssh-client 1:6.7p1-5ubuntu1.4 Ubuntu 14.04 LTS: openssh-client 1:6.6p1-2ubuntu2.4 Ubuntu 12.04 LTS: openssh-client 1:5.9p1-5ubuntu1.8 In general, a standard system update will make all the necessary changes. Corrected: 2016-01-14 22:42:43 UTC (stable/10, 10.2-STABLE) 2016-01-14 22:45:33 UTC (releng/10.2, 10.2-RELEASE-p10) 2016-01-14 22:47:54 UTC (releng/10.1, 10.1-RELEASE-p27) 2016-01-14 22:50:35 UTC (stable/9, 9.3-STABLE) 2016-01-14 22:53:07 UTC (releng/9.3, 9.3-RELEASE-p34) CVE Name: CVE-2016-0777 For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit <URL:https://security.FreeBSD.org/>. The ssh(1) is client side utility used to login to remote servers. II. III. IV. Workaround The vulnerable code in the client can be completely disabled by adding 'UseRoaming no' to the global ssh_config(5) file, or to user configuration in ~/.ssh/config, or by passing -oUseRoaming=no on the command line. All current remote ssh(1) sessions need to be restared after changing the configuration file. V. Solution Perform one of the following: 1) Upgrade your vulnerable system to a supported FreeBSD stable or release / security branch (releng) dated after the correction date. 2) To update your vulnerable system via a binary patch: Systems running a RELEASE version of FreeBSD on the i386 or amd64 platforms can be updated via the freebsd-update(8) utility: # freebsd-update fetch # freebsd-update install 3) To update your vulnerable system via a source code patch: The following patches have been verified to apply to the applicable FreeBSD release branches. a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility. # fetch https://security.FreeBSD.org/patches/SA-16:07/openssh.patch # fetch https://security.FreeBSD.org/patches/SA-16:07/openssh.patch.asc # gpg --verify openssh.patch.asc b) Apply the patch. Execute the following commands as root: # cd /usr/src # patch < /path/to/patch c) Recompile the operating system using buildworld and installworld as described in <URL:https://www.FreeBSD.org/handbook/makeworld.html>. VI. Correction details The following list contains the correction revision numbers for each affected branch. Branch/path Revision - ------------------------------------------------------------------------- stable/9/ r294053 releng/9.3/ r294054 stable/10/ r294049 releng/10.1/ r294051 releng/10.2/ r294052 - ------------------------------------------------------------------------- To see which files were modified by a particular revision, run the following command, replacing NNNNNN with the revision number, on a machine with Subversion installed: # svn diff -cNNNNNN --summarize svn://svn.freebsd.org/base Or visit the following URL, replacing NNNNNN with the revision number: <URL:https://svnweb.freebsd.org/base?view=revision&revision=NNNNNN> VII. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05247375 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c05247375 Version: 1 HPSBGN03638 rev.1 - HPE Remote Device Access: Virtual Customer Access System (vCAS) using lighttpd and OpenSSH, Unauthorized Modification of Information, Remote Denial of Service (DoS), Remote Disclosure of Information NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2016-08-29 Last Updated: 2016-08-29 Potential Security Impact: Remote Denial of Service (DoS), Disclosure of Information, Unauthorized Modification Of Information Source: Hewlett Packard Enterprise, Product Security Response Team VULNERABILITY SUMMARY Potential vulnerabilities have been identified in the lighttpd and OpenSSH version used in HPE Remote Device Access: Virtual Customer Access System (vCAS). These vulnerabilities could be exploited remotely resulting in unauthorized modification of information, denial of service (DoS), and disclosure of information. References: CVE-2015-3200 CVE-2016-0777 CVE-2016-0778 PSRT110211 SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HPE Remote Device Access: Virtual Customer Access System (vCAS) - v15.07 (RDA 8.1) and earlier. BACKGROUND CVSS Base Metrics ================= Reference, CVSS V3 Score/Vector, CVSS V2 Score/Vector CVE-2015-3200 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N) CVE-2016-0777 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 4.0 (AV:N/AC:L/Au:S/C:P/I:N/A:N) CVE-2016-0778 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 6.5 (AV:N/AC:L/Au:S/C:P/I:P/A:P) Information on CVSS is documented in HPE Customer Notice HPSN-2008-002 here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c01345499 RESOLUTION HPE has made the following updates available to resolve the vulnerabilities in Remote Device Access: Virtual Customer Access System (vCAS) vCAS 16.05 (RDA 8.7) kits - hp-rdacas-16.05-10482-vbox.ova and hp-rdacas-16.05-10482.ova. The Oracle VirtualBox kit is available at: https://h20529.www2.hpe.com/apt/hp-rdacas-16.05-10482-vbox.ova The VMware ESX(i) and VMware Player kit is available at: https://h20529.www2.hpe.com/apt/hp-rdacas-16.05-10482.ova HISTORY Version:1 (rev.1) - 29 August 2016 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running Hewlett Packard Enterprise (HPE) software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HPE Services support channel. Report: To report a potential security vulnerability for any HPE supported product: Web form: https://www.hpe.com/info/report-security-vulnerability Email: security-alert@hpe.com Subscribe: To initiate a subscription to receive future HPE Security Bulletin alerts via Email: http://www.hpe.com/support/Subscriber_Choice Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://www.hpe.com/support/Security_Bulletin_Archive Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HPE General Software HF = HPE Hardware and Firmware MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PV = ProCurve ST = Storage Software UX = HP-UX Copyright 2016 Hewlett Packard Enterprise Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett Packard Enterprise and the names of Hewlett Packard Enterprise products referenced herein are trademarks of Hewlett Packard Enterprise in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2016-03-21-5 OS X El Capitan 10.11.4 and Security Update 2016-002 OS X El Capitan 10.11.4 and Security Update 2016-002 is now available and addresses the following: apache_mod_php Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted .png file may lead to arbitrary code execution Description: Multiple vulnerabilities existed in libpng versions prior to 1.6.20. These were addressed by updating libpng to version 1.6.20. CVE-ID CVE-2015-8126 : Adam Mariš CVE-2015-8472 : Adam Mariš AppleRAID Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed through improved input validation. CVE-ID CVE-2016-1733 : Proteas of Qihoo 360 Nirvan Team AppleRAID Available for: OS X El Capitan v10.11 to v10.11.3 Impact: A local user may be able to determine kernel memory layout Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed through improved input validation. CVE-ID CVE-2016-1732 : Proteas of Qihoo 360 Nirvan Team AppleUSBNetworking Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue existed in the parsing of data from USB devices. This issue was addressed through improved input validation. CVE-ID CVE-2016-1734 : Andrea Barisani and Andrej Rosano of Inverse Path Bluetooth Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1735 : Jeonghoon Shin@A.D.D CVE-2016-1736 : beist and ABH of BoB Carbon Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted .dfont file may lead to arbitrary code execution Description: Multiple memory corruption issues existed in the handling of font files. These issues were addressed through improved bounds checking. CVE-ID CVE-2016-1737 : an anonymous researcher dyld Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An attacker may tamper with code-signed applications to execute arbitrary code in the application's context Description: A code signing verification issue existed in dyld. This issue was addressed with improved validation. CVE-ID CVE-2016-1738 : beist and ABH of BoB FontParser Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution Description: A memory corruption issue was addressed through improved memory handling. CVE-ID CVE-2016-1740 : HappilyCoded (ant4g0nist and r3dsm0k3) working with Trend Micro's Zero Day Initiative (ZDI) HTTPProtocol Available for: OS X El Capitan v10.11 to v10.11.3 Impact: A remote attacker may be able to execute arbitrary code Description: Multiple vulnerabilities existed in nghttp2 versions prior to 1.6.0, the most serious of which may have led to remote code execution. These were addressed by updating nghttp2 to version 1.6.0. CVE-ID CVE-2015-8659 Intel Graphics Driver Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1743 : Piotr Bania of Cisco Talos CVE-2016-1744 : Ian Beer of Google Project Zero IOFireWireFamily Available for: OS X El Capitan v10.11 to v10.11.3 Impact: A local user may be able to cause a denial of service Description: A null pointer dereference was addressed through improved validation. CVE-ID CVE-2016-1745 : sweetchip of Grayhash IOGraphics Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed through improved input validation. CVE-ID CVE-2016-1746 : Peter Pi of Trend Micro working with Trend Micro's Zero Day Initiative (ZDI) CVE-2016-1747 : Juwei Lin of Trend Micro working with Trend Micro's Zero Day Initiative (ZDI) IOHIDFamily Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to determine kernel memory layout Description: A memory corruption issue was addressed through improved memory handling. CVE-ID CVE-2016-1748 : Brandon Azad IOUSBFamily Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1749 : Ian Beer of Google Project Zero and Juwei Lin of Trend Micro working with Trend Micro's Zero Day Initiative (ZDI) Kernel Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed through improved memory management. CVE-ID CVE-2016-1750 : CESG Kernel Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: A race condition existed during the creation of new processes. This was addressed through improved state handling. CVE-ID CVE-2016-1757 : Ian Beer of Google Project Zero and Pedro Vilaca Kernel Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: A null pointer dereference was addressed through improved input validation. CVE-ID CVE-2016-1756 : Lufeng Li of Qihoo 360 Vulcan Team Kernel Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1754 : Lufeng Li of Qihoo 360 Vulcan Team CVE-2016-1755 : Ian Beer of Google Project Zero CVE-2016-1759 : lokihardt Kernel Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to determine kernel memory layout Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed through improved input validation. CVE-ID CVE-2016-1758 : Brandon Azad Kernel Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple integer overflows were addressed through improved input validation. CVE-ID CVE-2016-1753 : Juwei Lin Trend Micro working with Trend Micro's Zero Day Initiative (ZDI) Kernel Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to cause a denial of service Description: A denial of service issue was addressed through improved validation. CVE-ID CVE-2016-1752 : CESG libxml2 Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3 Impact: Processing maliciously crafted XML may lead to unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2015-1819 CVE-2015-5312 : David Drysdale of Google CVE-2015-7499 CVE-2015-7500 : Kostya Serebryany of Google CVE-2015-7942 : Kostya Serebryany of Google CVE-2015-8035 : gustavo.grieco CVE-2015-8242 : Hugh Davenport CVE-2016-1761 : wol0xff working with Trend Micro's Zero Day Initiative (ZDI) CVE-2016-1762 Messages Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An attacker who is able to bypass Apple's certificate pinning, intercept TLS connections, inject messages, and record encrypted attachment-type messages may be able to read attachments Description: A cryptographic issue was addressed by rejecting duplicate messages on the client. CVE-ID CVE-2016-1788 : Christina Garman, Matthew Green, Gabriel Kaptchuk, Ian Miers, and Michael Rushanan of Johns Hopkins University Messages Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Clicking a JavaScript link can reveal sensitive user information Description: An issue existed in the processing of JavaScript links. This issue was addressed through improved content security policy checks. CVE-ID CVE-2016-1764 : Matthew Bryan of the Uber Security Team (formerly of Bishop Fox), Joe DeMesy and Shubham Shah of Bishop Fox NVIDIA Graphics Drivers Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An application may be able to execute arbitrary code with kernel privileges Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1741 : Ian Beer of Google Project Zero OpenSSH Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3 Impact: Connecting to a server may leak sensitive user information, such as a client's private keys Description: Roaming, which was on by default in the OpenSSH client, exposed an information leak and a buffer overflow. These issues were addressed by disabling roaming in the client. CVE-ID CVE-2016-0777 : Qualys CVE-2016-0778 : Qualys OpenSSH Available for: OS X Mavericks v10.9.5 and OS X Yosemite v10.10.5 Impact: Multiple vulnerabilities in LibreSSL Description: Multiple vulnerabilities existed in LibreSSL versions prior to 2.1.8. These were addressed by updating LibreSSL to version 2.1.8. CVE-ID CVE-2015-5333 : Qualys CVE-2015-5334 : Qualys OpenSSL Available for: OS X El Capitan v10.11 to v10.11.3 Impact: A remote attacker may be able to cause a denial of service Description: A memory leak existed in OpenSSL versions prior to 0.9.8zh. This issue was addressed by updating OpenSSL to version 0.9.8zh. CVE-ID CVE-2015-3195 Python Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted .png file may lead to arbitrary code execution Description: Multiple vulnerabilities existed in libpng versions prior to 1.6.20. These were addressed by updating libpng to version 1.6.20. CVE-ID CVE-2014-9495 CVE-2015-0973 CVE-2015-8126 : Adam Mariš CVE-2015-8472 : Adam Mariš QuickTime Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted FlashPix Bitmap Image may lead to unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1767 : Francis Provencher from COSIG CVE-2016-1768 : Francis Provencher from COSIG QuickTime Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted Photoshop document may lead to unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues were addressed through improved memory handling. CVE-ID CVE-2016-1769 : Francis Provencher from COSIG Reminders Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Clicking a tel link can make a call without prompting the user Description: A user was not prompted before invoking a call. This was addressed through improved entitlement checks. CVE-ID CVE-2016-1770 : Guillaume Ross of Rapid7 and Laurent Chouinard of Laurent.ca Ruby Available for: OS X El Capitan v10.11 to v10.11.3 Impact: A local attacker may be able to cause unexpected application termination or arbitrary code execution Description: An unsafe tainted string usage vulnerability existed in versions prior to 2.0.0-p648. This issue was addressed by updating to version 2.0.0-p648. CVE-ID CVE-2015-7551 Security Available for: OS X El Capitan v10.11 to v10.11.3 Impact: A local user may be able to check for the existence of arbitrary files Description: A permissions issue existed in code signing tools. This was addressed though additional ownership checks. CVE-ID CVE-2016-1773 : Mark Mentovai of Google Inc. Security Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted certificate may lead to arbitrary code execution Description: A memory corruption issue existed in the ASN.1 decoder. This issue was addressed through improved input validation. CVE-ID CVE-2016-1950 : Francis Gabriel of Quarkslab Tcl Available for: OS X Yosemite v10.10.5 and OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted .png file may lead to arbitrary code execution Description: Multiple vulnerabilities existed in libpng versions prior to 1.6.20. These were addressed by removing libpng. CVE-ID CVE-2015-8126 : Adam Mariš TrueTypeScaler Available for: OS X El Capitan v10.11 to v10.11.3 Impact: Processing a maliciously crafted font file may lead to arbitrary code execution Description: A memory corruption issue existed in the processing of font files. This issue was addressed through improved input validation. CVE-ID CVE-2016-1775 : 0x1byte working with Trend Micro's Zero Day Initiative (ZDI) Wi-Fi Available for: OS X El Capitan v10.11 to v10.11.3 Impact: An attacker with a privileged network position may be able to execute arbitrary code Description: A frame validation and memory corruption issue existed for a given ethertype. This issue was addressed through additional ethertype validation and improved memory handling. CVE-ID CVE-2016-0801 : an anonymous researcher CVE-2016-0802 : an anonymous researcher OS X El Capitan 10.11.4 includes the security content of Safari 9.1. https://support.apple.com/kb/HT206171 OS X El Capitan v10.11.4 and Security Update 2016-002 may be obtained from the Mac App Store or Apple's Software Downloads web site: http://www.apple.com/support/downloads/ Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQIcBAEBCgAGBQJW8JQFAAoJEBcWfLTuOo7tZSYP/1bHFA1qemkD37uu7nYpk/q6 ARVsPgME1I1+5tOxX0TQJgzMBmdQsKYdsTiLpDk5HTuv+dAMsFfasaUItGk8Sz1w HiYjSfVsxL+Pjz3vK8/4/fsi2lX6472MElRw8gudITOhXtniGcKo/vuA5dB+vM3l Jy1NLHHhZ6BD2t0bBmlz41mZMG3AMxal2wfqE+5LkjUwASzcvC/3B1sh7Fntwyau /71vIgMQ5AaETdgQJAuQivxPyTlFduBRgLjqvPiB9eSK4Ctu5t/hErFIrP2NiDCi UhfZC48XbiRjJfkUsUD/5TIKnI+jkZxOnch9ny32dw2kUIkbIAbqufTkzsMXOpng O+rI93Ni7nfzgI3EkI2bq+C+arOoRiveWuJvc3SMPD5RQHo4NCQVs0ekQJKNHF78 juPnY29n8WMjwLS6Zfm+bH+n8ELIXrmmEscRztK2efa9S7vJe+AgIxx7JE/f8OHF i9K7UQBXFXcpMjXi1aTby/IUnpL5Ny4NVwYwIhctj0Mf6wTH7uf/FMWYIQOXcIfP Izo+GXxNeLd4H2ypZ+UpkZg/Sn2mtCd88wLc96+owlZPBlSqWl3X1wTlp8i5FP2X qlQ7RcTHJDv8jPT/MOfzxEK1n/azp45ahHA0o6nohUdxlA7PLci9vPiJxqKPo/0q VZmOKa8qMxB1L/JmdCqy =mZR+ -----END PGP SIGNATURE----- . Furthermore, a buffer overflow can be exploited by a malicious server, but its exploitation requires non-default options and is mitigated due to another bug. Users with private keys that are not protected by a passphrase are advised to generate new keys if they have connected to an SSH server they don't fully trust. Resolution ========== All OpenSSH users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/openssh-7.1_p2" References ========== [ 1 ] CVE-2016-0777 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-0777 [ 2 ] CVE-2016-0778 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-0778 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201601-01 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. License ======= Copyright 2016 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: openssh security update Advisory ID: RHSA-2016:0043-01 Product: Red Hat Enterprise Linux Advisory URL: https://rhn.redhat.com/errata/RHSA-2016-0043.html Issue date: 2016-01-14 CVE Names: CVE-2016-0777 CVE-2016-0778 ===================================================================== 1. Summary: Updated openssh packages that fix two security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: OpenSSH is OpenBSD's SSH (Secure Shell) protocol implementation. These packages include the core files necessary for both the OpenSSH client and server. An information leak flaw was found in the way the OpenSSH client roaming feature was implemented. A malicious server could potentially use this flaw to leak portions of memory (possibly including private SSH keys) of a successfully authenticated OpenSSH client. (CVE-2016-0777) A buffer overflow flaw was found in the way the OpenSSH client roaming feature was implemented. A malicious server could potentially use this flaw to execute arbitrary code on a successfully authenticated OpenSSH client if that client used certain non-default configuration options. (CVE-2016-0778) Red Hat would like to thank Qualys for reporting these issues. All openssh users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing this update, the OpenSSH server daemon (sshd) will be restarted automatically. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1298032 - CVE-2016-0777 OpenSSH: Client Information leak due to use of roaming connection feature 1298033 - CVE-2016-0778 OpenSSH: Client buffer-overflow when using roaming connections 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: openssh-6.6.1p1-23.el7_2.src.rpm x86_64: openssh-6.6.1p1-23.el7_2.x86_64.rpm openssh-askpass-6.6.1p1-23.el7_2.x86_64.rpm openssh-clients-6.6.1p1-23.el7_2.x86_64.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-keycat-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-6.6.1p1-23.el7_2.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: openssh-debuginfo-6.6.1p1-23.el7_2.i686.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-ldap-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.x86_64.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.i686.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: openssh-6.6.1p1-23.el7_2.src.rpm x86_64: openssh-6.6.1p1-23.el7_2.x86_64.rpm openssh-clients-6.6.1p1-23.el7_2.x86_64.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-keycat-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-6.6.1p1-23.el7_2.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: openssh-askpass-6.6.1p1-23.el7_2.x86_64.rpm openssh-debuginfo-6.6.1p1-23.el7_2.i686.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-ldap-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.x86_64.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.i686.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: openssh-6.6.1p1-23.el7_2.src.rpm ppc64: openssh-6.6.1p1-23.el7_2.ppc64.rpm openssh-askpass-6.6.1p1-23.el7_2.ppc64.rpm openssh-clients-6.6.1p1-23.el7_2.ppc64.rpm openssh-debuginfo-6.6.1p1-23.el7_2.ppc64.rpm openssh-keycat-6.6.1p1-23.el7_2.ppc64.rpm openssh-server-6.6.1p1-23.el7_2.ppc64.rpm ppc64le: openssh-6.6.1p1-23.el7_2.ppc64le.rpm openssh-askpass-6.6.1p1-23.el7_2.ppc64le.rpm openssh-clients-6.6.1p1-23.el7_2.ppc64le.rpm openssh-debuginfo-6.6.1p1-23.el7_2.ppc64le.rpm openssh-keycat-6.6.1p1-23.el7_2.ppc64le.rpm openssh-server-6.6.1p1-23.el7_2.ppc64le.rpm s390x: openssh-6.6.1p1-23.el7_2.s390x.rpm openssh-askpass-6.6.1p1-23.el7_2.s390x.rpm openssh-clients-6.6.1p1-23.el7_2.s390x.rpm openssh-debuginfo-6.6.1p1-23.el7_2.s390x.rpm openssh-keycat-6.6.1p1-23.el7_2.s390x.rpm openssh-server-6.6.1p1-23.el7_2.s390x.rpm x86_64: openssh-6.6.1p1-23.el7_2.x86_64.rpm openssh-askpass-6.6.1p1-23.el7_2.x86_64.rpm openssh-clients-6.6.1p1-23.el7_2.x86_64.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-keycat-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-6.6.1p1-23.el7_2.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: openssh-debuginfo-6.6.1p1-23.el7_2.ppc.rpm openssh-debuginfo-6.6.1p1-23.el7_2.ppc64.rpm openssh-ldap-6.6.1p1-23.el7_2.ppc64.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.ppc64.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.ppc.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.ppc64.rpm ppc64le: openssh-debuginfo-6.6.1p1-23.el7_2.ppc64le.rpm openssh-ldap-6.6.1p1-23.el7_2.ppc64le.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.ppc64le.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.ppc64le.rpm s390x: openssh-debuginfo-6.6.1p1-23.el7_2.s390.rpm openssh-debuginfo-6.6.1p1-23.el7_2.s390x.rpm openssh-ldap-6.6.1p1-23.el7_2.s390x.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.s390x.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.s390.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.s390x.rpm x86_64: openssh-debuginfo-6.6.1p1-23.el7_2.i686.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-ldap-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.x86_64.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.i686.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: openssh-6.6.1p1-23.el7_2.src.rpm x86_64: openssh-6.6.1p1-23.el7_2.x86_64.rpm openssh-askpass-6.6.1p1-23.el7_2.x86_64.rpm openssh-clients-6.6.1p1-23.el7_2.x86_64.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-keycat-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-6.6.1p1-23.el7_2.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: openssh-debuginfo-6.6.1p1-23.el7_2.i686.rpm openssh-debuginfo-6.6.1p1-23.el7_2.x86_64.rpm openssh-ldap-6.6.1p1-23.el7_2.x86_64.rpm openssh-server-sysvinit-6.6.1p1-23.el7_2.x86_64.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.i686.rpm pam_ssh_agent_auth-0.9.3-9.23.el7_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2016-0777 https://access.redhat.com/security/cve/CVE-2016-0778 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/articles/2123781 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFWmAWQXlSAg2UNWIIRAh17AJ9SiT1MA1YtOA6ctMp9jIo4e9XrFwCgkbmo nXgYWs8cZcyoTRVoriTGHQo= =1sk9 -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 2.07

sources: NVD: CVE-2016-0777 // BID: 80698 // BID: 80695 // VULHUB: VHN-88287 // PACKETSTORM: 135250 // PACKETSTORM: 135281 // PACKETSTORM: 138552 // PACKETSTORM: 136346 // PACKETSTORM: 135283 // PACKETSTORM: 135263

AFFECTED PRODUCTS

vendor:oraclemodel:linuxscope:eqversion:7

Trust: 1.6

vendor:oraclemodel:solarisscope:eqversion:11.3

Trust: 1.6

vendor:openbsdmodel:opensshscope:eqversion:5.6

Trust: 1.6

vendor:openbsdmodel:opensshscope:eqversion:5.4

Trust: 1.6

vendor:openbsdmodel:opensshscope:eqversion:5.5

Trust: 1.6

vendor:openbsdmodel:opensshscope:eqversion:5.8

Trust: 1.6

vendor:openbsdmodel:opensshscope:eqversion:5.7

Trust: 1.6

vendor:openbsdmodel:opensshscope:eqversion:5.2

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:7.1

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.1

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.8

Trust: 1.0

vendor:sophosmodel:unified threat management softwarescope:eqversion:9.318

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:5.1

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.3

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.6

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:5.3

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:7.0

Trust: 1.0

vendor:hpmodel:remote device access virtual customer access systemscope:lteversion:15.07

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.4

Trust: 1.0

vendor:sophosmodel:unified threat management softwarescope:eqversion:9.353

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.2

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.0

Trust: 1.0

vendor:applemodel:mac os xscope:lteversion:10.11.3

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.5

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:5.0

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.7

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:6.9

Trust: 1.0

vendor:openbsdmodel:opensshscope:eqversion:5.9

Trust: 1.0

vendor:ibmmodel:flex system managerscope:eqversion:1.2.1.0

Trust: 0.6

vendor:slackwaremodel:linuxscope:eqversion:14.0

Trust: 0.6

vendor:junipermodel:nsmexpressscope:eqversion: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.16

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1

Trust: 0.6

vendor:junipermodel:junos 14.2r2scope: - version: -

Trust: 0.6

vendor:junipermodel:nsm3000scope:eqversion: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.3.4

Trust: 0.6

vendor:junipermodel:junos 13.3r4scope: - version: -

Trust: 0.6

vendor:ibmmodel:power hmcscope:eqversion:7.9.0.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.3

Trust: 0.6

vendor:ibmmodel:purepower integrated manager service appliancescope:eqversion:1.1

Trust: 0.6

vendor:slackwaremodel:linux x86 64scope:eqversion:13.0

Trust: 0.6

vendor:ibmmodel:power hmcscope:eqversion:8.3.0.0

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d35scope: - version: -

Trust: 0.6

vendor:ibmmodel:purepower integrated manager kvm hostscope:eqversion:0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:neversion:7.1.3

Trust: 0.6

vendor:extremenetworksmodel:purviewscope:neversion:7.0

Trust: 0.6

vendor:debianmodel:linux armscope:eqversion:6.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.0.5

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.0

Trust: 0.6

vendor:junipermodel:junos 15.1x49-d40scope:neversion: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.0.13

Trust: 0.6

vendor:applemodel:mac osscope:neversion:x10.11.4

Trust: 0.6

vendor:debianmodel:linux ia-64scope:eqversion:6.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.17

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.5

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.10

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.18

Trust: 0.6

vendor:extremenetworksmodel:ids/ipsscope:eqversion:0

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.3.50

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.0.1

Trust: 0.6

vendor:junipermodel:junos 13.3r2scope: - version: -

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.11

Trust: 0.6

vendor:extremenetworksmodel:extremexosscope:eqversion:15.7

Trust: 0.6

vendor:junipermodel:junos 15.1x49-d15scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d20scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.1.8

Trust: 0.6

vendor:slackwaremodel:linux x86 64scope:eqversion:13.1

Trust: 0.6

vendor:redhatmodel:enterprise linux serverscope:eqversion:7

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.3.2

Trust: 0.6

vendor:slackwaremodel:linux x86 64 -currentscope: - version: -

Trust: 0.6

vendor:extremenetworksmodel:nac appliancescope:neversion:7.0.3

Trust: 0.6

vendor:ibmmodel:power hmcscope:eqversion:8.1.0.0

Trust: 0.6

vendor:junipermodel:junos 14.1r3scope: - version: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.10

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d45scope:neversion: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.14

Trust: 0.6

vendor:junipermodel:junos 13.3r5scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 15.1r1scope: - version: -

Trust: 0.6

vendor:opensshmodel:6.2p1scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.1x47-d11scope: - version: -

Trust: 0.6

vendor:ibmmodel:purepower integrated manager vhmc appliancescope:eqversion:1.1.0

Trust: 0.6

vendor:junipermodel:junos 15.1x49-d10scope: - version: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.2

Trust: 0.6

vendor:ibmmodel:power hmcscope:eqversion:8.4.0.0

Trust: 0.6

vendor:ibmmodel:aixscope:eqversion:5.3

Trust: 0.6

vendor:junipermodel:junos 15.1f3scope: - version: -

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.2.0.0

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.0.10

Trust: 0.6

vendor:extremenetworksmodel:extremexosscope:eqversion:16.1.2

Trust: 0.6

vendor:redhatmodel:enterprise linux desktopscope:eqversion:7

Trust: 0.6

vendor:redhatmodel:enterprise linux workstationscope:eqversion:7

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.8

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.1

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.0.8

Trust: 0.6

vendor:extremenetworksmodel:netsight appliancescope:neversion:6.3.0.179

Trust: 0.6

vendor:extremenetworksmodel:extremexos patchscope:neversion:15.7.38

Trust: 0.6

vendor:junipermodel:junos 15.1r2scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 15.1f2scope: - version: -

Trust: 0.6

vendor:extremenetworksmodel:nac appliancescope:eqversion:5.0

Trust: 0.6

vendor:slackwaremodel:linux x86 64scope:eqversion:13.37

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.5

Trust: 0.6

vendor:junipermodel:junos 15.1x49-d20scope: - version: -

Trust: 0.6

vendor:extremenetworksmodel:netsight appliancescope:eqversion:5.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.4

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.6

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.1.2

Trust: 0.6

vendor:junipermodel:junos 14.1r5scope: - version: -

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.4

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.3.3

Trust: 0.6

vendor:extremenetworksmodel:nac appliancescope:eqversion:6.0

Trust: 0.6

vendor:debianmodel:linux sparcscope:eqversion:6.0

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.9.5

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:5.7

Trust: 0.6

vendor:slackwaremodel:linux x86 64scope:eqversion:14.1

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.4.0

Trust: 0.6

vendor:opensshmodel:5.6p1scope: - version: -

Trust: 0.6

vendor:junipermodel:nsm4000scope:eqversion:0

Trust: 0.6

vendor:junipermodel:junos 13.3r6scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.1x47-d20scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.3

Trust: 0.6

vendor:extremenetworksmodel:netsight appliancescope:eqversion:6.0

Trust: 0.6

vendor:junipermodel:junos 14.1r7scope:neversion: -

Trust: 0.6

vendor:junipermodel:junos 14.1r1scope: - version: -

Trust: 0.6

vendor:hpmodel:virtual customer access systemscope:eqversion:14.06

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d10scope: - version: -

Trust: 0.6

vendor:extremenetworksmodel:extremexosscope:eqversion:16.2

Trust: 0.6

vendor:slackwaremodel:linux -currentscope: - version: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.5

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.1.9

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.9

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.15

Trust: 0.6

vendor:ibmmodel:power hmcscope:eqversion:8.2.0.0

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.11.2

Trust: 0.6

vendor:slackwaremodel:linuxscope:eqversion:13.1

Trust: 0.6

vendor:junipermodel:junos 12.1x47-d10scope: - version: -

Trust: 0.6

vendor:extremenetworksmodel:nac appliancescope:neversion:6.3.0.179

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.4

Trust: 0.6

vendor:susemodel:opensuse evergreenscope:eqversion:11.4

Trust: 0.6

vendor:slackwaremodel:linuxscope:eqversion:13.37

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:5.8

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.1.0

Trust: 0.6

vendor:junipermodel:junos 14.1r4scope: - version: -

Trust: 0.6

vendor:ubuntumodel:linuxscope:eqversion:15.10

Trust: 0.6

vendor:ibmmodel:iscope:eqversion:7.1

Trust: 0.6

vendor:hpmodel:virtual customer access systemscope:eqversion:15.07

Trust: 0.6

vendor:slackwaremodel:linuxscope:eqversion:13.0

Trust: 0.6

vendor:extremenetworksmodel:identifi wirelessscope:eqversion:10.11

Trust: 0.6

vendor:ibmmodel:tivoli provisioning manager for imagesscope:eqversion:7.1.1.0

Trust: 0.6

vendor:opensshmodel:7.1p2scope:neversion: -

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.0.4

Trust: 0.6

vendor:junipermodel:junos 12.3x48-d25scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.3x48-d15scope: - version: -

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.1.0.0

Trust: 0.6

vendor:oraclemodel:enterprise linuxscope:eqversion:7

Trust: 0.6

vendor:ubuntumodel:linux ltsscope:eqversion:14.04

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.1

Trust: 0.6

vendor:extremenetworksmodel:extremexos patchscope:neversion:15.7.31

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.2.4

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0.13

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:5.5

Trust: 0.6

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.6

vendor:applemodel:mac os security updatescope:neversion:x2016-0020

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.8

Trust: 0.6

vendor:junipermodel:junos 14.2r6scope:neversion: -

Trust: 0.6

vendor:debianmodel:linux amd64scope:eqversion:6.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.3

Trust: 0.6

vendor:junipermodel:junos 12.3x48-d30scope:neversion: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0

Trust: 0.6

vendor:ibmmodel:iscope:eqversion:7.2

Trust: 0.6

vendor:extremenetworksmodel:netsight appliancescope:eqversion:4.4

Trust: 0.6

vendor:junipermodel:junos 12.1x47-d25scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.2.0

Trust: 0.6

vendor:junipermodel:junos 12.3r12scope:neversion: -

Trust: 0.6

vendor:ibmmodel:purepower integrated manager appliancescope:eqversion:1.1

Trust: 0.6

vendor:ibmmodel:flex system chassis management module 2petscope: - version: -

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.11.1

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.0.12

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.2.5

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.0.7

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.2

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.2

Trust: 0.6

vendor:ibmmodel:tivoli provisioning manager for os deploymentscope:eqversion:7.1.1.19

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0.6

Trust: 0.6

vendor:junipermodel:junos 15.1f1scope: - version: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.1.2

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0.12

Trust: 0.6

vendor:junipermodel:junos 13.3r1scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.1.1

Trust: 0.6

vendor:s u s emodel:opensusescope:eqversion:13.1

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d30scope: - version: -

Trust: 0.6

vendor:ibmmodel:iscope:eqversion:6.1

Trust: 0.6

vendor:ibmmodel:aixscope:eqversion:7.1

Trust: 0.6

vendor:extremenetworksmodel:extremexosscope:neversion:16.2.1

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.11.3

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.3

Trust: 0.6

vendor:junipermodel:junos 13.3r3scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d25scope: - version: -

Trust: 0.6

vendor:opensshmodel:6.2p2scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.3x48-d20scope: - version: -

Trust: 0.6

vendor:debianmodel:linux ia-32scope:eqversion:6.0

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:7.1

Trust: 0.6

vendor:ubuntumodel:linux ltsscope:eqversion:12.04

Trust: 0.6

vendor:ibmmodel:tivoli provisioning manager for os deploymentscope:eqversion:7.1.1

Trust: 0.6

vendor:debianmodel:linux mipsscope:eqversion:6.0

Trust: 0.6

vendor:ibmmodel:aixscope:eqversion:7.2

Trust: 0.6

vendor:extremenetworksmodel:purviewscope:eqversion:0

Trust: 0.6

vendor:extremenetworksmodel:nac appliancescope:eqversion:5.1

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.1.3

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d36scope: - version: -

Trust: 0.6

vendor:extremenetworksmodel:purviewscope:neversion:6.3

Trust: 0.6

vendor:junipermodel:junos 14.2r4scope: - version: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.6

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.2.1

Trust: 0.6

vendor:junipermodel:junos 15.1r3scope:neversion: -

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.3.0

Trust: 0.6

vendor:extremenetworksmodel:netsight appliancescope:eqversion:5.1

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d40scope: - version: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.1.1

Trust: 0.6

vendor:slackwaremodel:linuxscope:eqversion:14.1

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.9

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:7.1

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.2

Trust: 0.6

vendor:junipermodel:junos 15.1x49-d30scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.4.0

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.2.6

Trust: 0.6

vendor:debianmodel:linux s/390scope:eqversion:6.0

Trust: 0.6

vendor:hpmodel:virtual customer access systemscope:neversion:16.05

Trust: 0.6

vendor:slackwaremodel:linux x86 64scope:eqversion:14.0

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.14

Trust: 0.6

vendor:junipermodel:junos 13.3r9scope:neversion: -

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.0.0

Trust: 0.6

vendor:hpmodel:remote device accessscope:eqversion:8.1

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.9

Trust: 0.6

vendor:junipermodel:junos 14.2r3scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 14.2r5scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.3.0

Trust: 0.6

vendor:debianmodel:linux powerpcscope:eqversion:6.0

Trust: 0.6

vendor:ibmmodel:tivoli provisioning manager for imagesscope:eqversion:x7.1.1.0

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:5.4

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.0.7

Trust: 0.6

vendor:ibmmodel:aixscope:eqversion:6.1

Trust: 0.6

vendor:ibmmodel:power hmcscope:eqversion:7.3.0.0

Trust: 0.6

vendor:hpmodel:remote device accessscope:neversion:8.7

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.1.0

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.2

Trust: 0.6

vendor:junipermodel:junos 15.1f5scope:neversion: -

Trust: 0.6

vendor:junipermodel:junos 14.2r1scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.1.3

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d15scope: - version: -

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.1

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:5.6

Trust: 0.6

vendor:ibmmodel:smartcloud provisioning for software virtual appliancescope:eqversion:2.1

Trust: 0.6

vendor:junipermodel:junos 12.1x47-d15scope: - version: -

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2

Trust: 0.6

vendor:redhatmodel:enterprise linux hpc nodescope:eqversion:7

Trust: 0.6

vendor:junipermodel:junos 14.1r2scope: - version: -

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:6.1

Trust: 0.6

vendor:extremenetworksmodel:extremexosscope:eqversion:15.7.2

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.0.11

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.20

Trust: 0.6

vendor:junipermodel:junos 12.1x47-d35scope:neversion: -

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.1.4

Trust: 0.6

vendor:junipermodel:junos 12.3x48-d10scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.1x46-d26scope: - version: -

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.0.1

Trust: 0.6

vendor:extremenetworksmodel:identifi wirelessscope:neversion:10.11.1

Trust: 0.6

vendor:opensshmodel:p2scope:eqversion:5.8

Trust: 0.6

vendor:extremenetworksmodel:netsight appliancescope:neversion:7.0.3

Trust: 0.6

vendor:ibmmodel:viosscope:eqversion:2.2.1.9

Trust: 0.6

vendor:ibmmodel:purepower integrated manager power vc appliancescope:eqversion:1.1

Trust: 0.6

vendor:s u s emodel:opensusescope:eqversion:13.2

Trust: 0.6

vendor:junipermodel:junos 12.3r10scope: - version: -

Trust: 0.6

vendor:ibmmodel:tivoli provisioning manager for imagesscope:eqversion:7.1.1.19

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0.5

Trust: 0.6

vendor:opensshmodel:opensshscope:eqversion:7.0

Trust: 0.6

vendor:ubuntumodel:linuxscope:eqversion:15.04

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:5.1.1

Trust: 0.6

vendor:ibmmodel:flex system managerscope:eqversion:1.3.0

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0.9

Trust: 0.6

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.1.10

Trust: 0.6

vendor:junipermodel:junos 14.1r6scope: - version: -

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.10.5

Trust: 0.6

vendor:opensshmodel:6.9p1scope: - version: -

Trust: 0.6

vendor:junipermodel:junos 12.3r11scope: - version: -

Trust: 0.3

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.0.70

Trust: 0.3

vendor:junipermodel:junos 13.3r8scope: - version: -

Trust: 0.3

vendor:paloaltonetworksmodel:pan-osscope:eqversion:6.1.00

Trust: 0.3

vendor:junipermodel:junos 13.3r7scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-rc1-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-release-p8scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p13scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p5scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p22scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-rc1-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p10scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p17scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-relengscope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-beta3-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-release-p6scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-rc2-p3scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.1x47-d30scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p9scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-stablescope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-rcscope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-beta1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-rc2-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-rc2-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p34scope:neversion: -

Trust: 0.3

vendor:freebsdmodel:10.1-releasescope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-rc3-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-stablescope:neversion: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p8scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p9scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-rc2-p1scope: - version: -

Trust: 0.3

vendor:extremenetworksmodel:extremexosscope:eqversion:21.1.1

Trust: 0.3

vendor:freebsdmodel:10.2-rc1-p1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r1.7scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-beta1-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p10scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p3scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p5scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-stablescope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p27scope:neversion: -

Trust: 0.3

vendor:freebsdmodel:9.3-beta1-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p25scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-beta2-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p4scope: - version: -

Trust: 0.3

vendor:freebsdmodel:freebsdscope:eqversion:10.1

Trust: 0.3

vendor:freebsdmodel:10.1-beta3-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p6scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:freebsdscope:eqversion:9.3

Trust: 0.3

vendor:freebsdmodel:10.1-rc3-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-prereleasescope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p21scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p24scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p19scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p13scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-prereleasescope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p17scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-rc2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-rc3-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:freebsdscope:eqversion:10.2

Trust: 0.3

vendor:freebsdmodel:10.1-release-p25scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-rc1-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-rc4-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p6scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-beta2-p3scope: - version: -

Trust: 0.3

vendor:ibmmodel:mq appliance m2000scope:eqversion:0

Trust: 0.3

vendor:freebsdmodel:10.0-rc2-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p31scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r1.8scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p18scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-stablescope:neversion: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p5scope: - version: -

Trust: 0.3

vendor:extremenetworksmodel:extremexosscope:eqversion:21.1

Trust: 0.3

vendor:freebsdmodel:9.3-beta1-p2scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-rc1-p1scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p23scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.1-release-p16scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p12scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p6scope: - version: -

Trust: 0.3

vendor:freebsdmodel:9.3-release-p9scope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.0-release-p7scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 12.3r1.8scope: - version: -

Trust: 0.3

vendor:freebsdmodel:freebsdscope:eqversion:10.0

Trust: 0.3

vendor:freebsdmodel:9.3-release-p29scope: - version: -

Trust: 0.3

vendor:extremenetworksmodel:extremexosscope:eqversion:0

Trust: 0.3

vendor:freebsdmodel:10.2-prereleasescope: - version: -

Trust: 0.3

vendor:freebsdmodel:10.2-release-p10scope:neversion: -

Trust: 0.3

sources: BID: 80698 // BID: 80695 // CNNVD: CNNVD-201601-249 // NVD: CVE-2016-0777

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2016-0777
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-201601-249
value: MEDIUM

Trust: 0.6

VULHUB: VHN-88287
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2016-0777
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-88287
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2016-0777
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 3.6
version: 3.0

Trust: 1.0

sources: VULHUB: VHN-88287 // CNNVD: CNNVD-201601-249 // NVD: CVE-2016-0777

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.1

sources: VULHUB: VHN-88287 // NVD: CVE-2016-0777

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 138552 // CNNVD: CNNVD-201601-249

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201601-249

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-88287

PATCH

title:OpenSSH Security vulnerabilitiesurl:http://123.124.177.30/web/xxk/bdxqById.tag?id=59596

Trust: 0.6

sources: CNNVD: CNNVD-201601-249

EXTERNAL IDS

db:NVDid:CVE-2016-0777

Trust: 2.9

db:JUNIPERid:JSA10734

Trust: 2.3

db:BIDid:80695

Trust: 2.0

db:PACKETSTORMid:135273

Trust: 1.7

db:OPENWALLid:OSS-SECURITY/2016/01/14/7

Trust: 1.7

db:SECTRACKid:1034671

Trust: 1.7

db:SIEMENSid:SSA-412672

Trust: 1.7

db:CNNVDid:CNNVD-201601-249

Trust: 0.7

db:JUNIPERid:JSA10774

Trust: 0.6

db:CERT/CCid:VU#456088

Trust: 0.6

db:BIDid:80698

Trust: 0.3

db:PACKETSTORMid:135283

Trust: 0.2

db:PACKETSTORMid:135250

Trust: 0.2

db:PACKETSTORMid:135281

Trust: 0.2

db:PACKETSTORMid:135263

Trust: 0.2

db:PACKETSTORMid:135282

Trust: 0.1

db:PACKETSTORMid:135259

Trust: 0.1

db:VULHUBid:VHN-88287

Trust: 0.1

db:PACKETSTORMid:138552

Trust: 0.1

db:PACKETSTORMid:136346

Trust: 0.1

sources: VULHUB: VHN-88287 // BID: 80698 // BID: 80695 // PACKETSTORM: 135250 // PACKETSTORM: 135281 // PACKETSTORM: 138552 // PACKETSTORM: 136346 // PACKETSTORM: 135283 // PACKETSTORM: 135263 // CNNVD: CNNVD-201601-249 // NVD: CVE-2016-0777

REFERENCES

url:http://www.securityfocus.com/bid/80695

Trust: 2.3

url:http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

Trust: 2.3

url:http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

Trust: 2.3

url:http://www.debian.org/security/2016/dsa-3446

Trust: 2.3

url:http://packetstormsecurity.com/files/135273/qualys-security-advisory-openssh-overflow-leak.html

Trust: 2.3

url:http://www.openssh.com/txt/release-7.1p2

Trust: 2.0

url:https://security.gentoo.org/glsa/201601-01

Trust: 1.8

url:http://www.ubuntu.com/usn/usn-2869-1

Trust: 1.8

url:http://lists.apple.com/archives/security-announce/2016/mar/msg00004.html

Trust: 1.7

url:http://www.securityfocus.com/archive/1/537295/100/0/threaded

Trust: 1.7

url:https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/

Trust: 1.7

url:https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/

Trust: 1.7

url:https://bto.bluecoat.com/security-advisory/sa109

Trust: 1.7

url:https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf

Trust: 1.7

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05247375

Trust: 1.7

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05356388

Trust: 1.7

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05385680

Trust: 1.7

url:https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docdisplay?docid=emr_na-c05390722

Trust: 1.7

url:https://support.apple.com/ht206167

Trust: 1.7

url:http://lists.fedoraproject.org/pipermail/package-announce/2016-february/176516.html

Trust: 1.7

url:http://lists.fedoraproject.org/pipermail/package-announce/2016-january/176349.html

Trust: 1.7

url:http://lists.fedoraproject.org/pipermail/package-announce/2016-january/175592.html

Trust: 1.7

url:http://lists.fedoraproject.org/pipermail/package-announce/2016-january/175676.html

Trust: 1.7

url:https://security.freebsd.org/advisories/freebsd-sa-16:07.openssh.asc

Trust: 1.7

url:http://seclists.org/fulldisclosure/2016/jan/44

Trust: 1.7

url:http://www.openwall.com/lists/oss-security/2016/01/14/7

Trust: 1.7

url:http://www.securitytracker.com/id/1034671

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00006.html

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00007.html

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00008.html

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00009.html

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00013.html

Trust: 1.7

url:http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00014.html

Trust: 1.7

url:http://kb.juniper.net/infocenter/index?page=content&id=jsa10734

Trust: 1.6

url:https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c05247375

Trust: 0.7

url:https://rhn.redhat.com/errata/rhsa-2016-0043.html

Trust: 0.7

url:http://www.openssh.com

Trust: 0.6

url:http://kb.juniper.net/infocenter/index?page=content&id=jsa10734&cat=sirt_1&actp=list

Trust: 0.6

url:https://kb.juniper.net/infocenter/index?page=content&id=jsa10774&actp=rss

Trust: 0.6

url:http://ftp.openbsd.org/pub/openbsd/patches/5.8/common/010_ssh.patch.sig

Trust: 0.6

url:http://ftp.openbsd.org/pub/openbsd/patches/5.7/common/022_ssh.patch.sig

Trust: 0.6

url:http://www-01.ibm.com/support/docview.wss?uid=isg3t1023271

Trust: 0.6

url:http://www-01.ibm.com/support/docview.wss?uid=isg3t1023319

Trust: 0.6

url:https://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5099309

Trust: 0.6

url:http://www-01.ibm.com/support/docview.wss?uid=nas8n1021138

Trust: 0.6

url:http://aix.software.ibm.com/aix/efixes/security/openssh_advisory7.asc

Trust: 0.6

url:https://securityadvisories.paloaltonetworks.com/home/detail/44

Trust: 0.6

url:https://www.qualys.com/2016/01/14/cve-2016-0777-cve-2016-0778/openssh-cve-2016-0777-cve-2016-0778.txt

Trust: 0.6

url:http://www-01.ibm.com/support/docview.wss?uid=swg21978487

Trust: 0.6

url:http://www-01.ibm.com/support/docview.wss?uid=swg2c1000044

Trust: 0.6

url:http://www.ubuntu.com/usn/usn-2869-1/

Trust: 0.6

url:https://gtacknowledge.extremenetworks.com/articles/vulnerability_notice/vn-2016-001-openssh

Trust: 0.6

url:https://www.kb.cert.org/vuls/id/456088

Trust: 0.6

url:http://www-01.ibm.com/support/docview.wss?uid=nas8n1021109

Trust: 0.6

url:https://nvd.nist.gov/vuln/detail/cve-2016-0777

Trust: 0.6

url:https://nvd.nist.gov/vuln/detail/cve-2016-0778

Trust: 0.5

url:https://www.freebsd.org/security/advisories/freebsd-sa-16:07.openssh.asc

Trust: 0.3

url:http://www-01.ibm.com/support/docview.wss?uid=swg21975158

Trust: 0.3

url:http://kb.juniper.net/infocenter/index?page=content&amp;id=jsa10734

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/openssh/1:6.7p1-5ubuntu1.4

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/openssh/1:6.6p1-2ubuntu2.4

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/openssh/1:6.9p1-2ubuntu0.1

Trust: 0.1

url:https://launchpad.net/ubuntu/+source/openssh/1:5.9p1-5ubuntu1.8

Trust: 0.1

url:https://www.freebsd.org/handbook/makeworld.html>.

Trust: 0.1

url:https://security.freebsd.org/>.

Trust: 0.1

url:https://security.freebsd.org/patches/sa-16:07/openssh.patch

Trust: 0.1

url:https://security.freebsd.org/advisories/freebsd-sa-16:07.openssh.asc>

Trust: 0.1

url:https://security.freebsd.org/patches/sa-16:07/openssh.patch.asc

Trust: 0.1

url:https://svnweb.freebsd.org/base?view=revision&revision=nnnnnn>

Trust: 0.1

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-0777>

Trust: 0.1

url:https://h20529.www2.hpe.com/apt/hp-rdacas-16.05-10482-vbox.ova

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-3200

Trust: 0.1

url:http://www.hpe.com/support/security_bulletin_archive

Trust: 0.1

url:https://www.hpe.com/info/report-security-vulnerability

Trust: 0.1

url:http://www.hpe.com/support/subscriber_choice

Trust: 0.1

url:https://h20529.www2.hpe.com/apt/hp-rdacas-16.05-10482.ova

Trust: 0.1

url:https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c01345499

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-7551

Trust: 0.1

url:https://support.apple.com/kb/ht201222

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-8659

Trust: 0.1

url:https://gpgtools.org

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-8035

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-8472

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-1819

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-3195

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-7499

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-0801

Trust: 0.1

url:http://www.apple.com/support/downloads/

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-8242

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-8126

Trust: 0.1

url:https://support.apple.com/kb/ht206171

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1732

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-5312

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-7942

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-7500

Trust: 0.1

url:https://www.apple.com/support/security/pgp/

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2014-9495

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1734

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1740

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-5334

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1733

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1736

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1735

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-5333

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-0802

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1738

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2016-1737

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2015-0973

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-0777

Trust: 0.1

url:http://creativecommons.org/licenses/by-sa/2.5

Trust: 0.1

url:https://security.gentoo.org/

Trust: 0.1

url:https://bugs.gentoo.org.

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2016-0778

Trust: 0.1

url:https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 0.1

url:https://access.redhat.com/security/updates/classification/#moderate

Trust: 0.1

url:https://access.redhat.com/articles/2123781

Trust: 0.1

url:https://bugzilla.redhat.com/):

Trust: 0.1

url:https://access.redhat.com/security/team/key/

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2016-0777

Trust: 0.1

url:https://access.redhat.com/articles/11258

Trust: 0.1

url:https://access.redhat.com/security/cve/cve-2016-0778

Trust: 0.1

url:https://access.redhat.com/security/team/contact/

Trust: 0.1

sources: VULHUB: VHN-88287 // BID: 80698 // BID: 80695 // PACKETSTORM: 135250 // PACKETSTORM: 135281 // PACKETSTORM: 138552 // PACKETSTORM: 136346 // PACKETSTORM: 135283 // PACKETSTORM: 135263 // CNNVD: CNNVD-201601-249 // NVD: CVE-2016-0777

CREDITS

Qualys Security Advisory team

Trust: 0.7

sources: BID: 80698 // BID: 80695 // PACKETSTORM: 135281

SOURCES

db:VULHUBid:VHN-88287
db:BIDid:80698
db:BIDid:80695
db:PACKETSTORMid:135250
db:PACKETSTORMid:135281
db:PACKETSTORMid:138552
db:PACKETSTORMid:136346
db:PACKETSTORMid:135283
db:PACKETSTORMid:135263
db:CNNVDid:CNNVD-201601-249
db:NVDid:CVE-2016-0777

LAST UPDATE DATE

2024-11-21T22:19:58.495000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-88287date:2022-12-13T00:00:00
db:BIDid:80698date:2017-01-23T03:06:00
db:BIDid:80695date:2017-01-23T04:05:00
db:CNNVDid:CNNVD-201601-249date:2022-12-14T00:00:00
db:NVDid:CVE-2016-0777date:2022-12-13T12:15:18.887

SOURCES RELEASE DATE

db:VULHUBid:VHN-88287date:2016-01-14T00:00:00
db:BIDid:80698date:2016-01-14T00:00:00
db:BIDid:80695date:2016-01-14T00:00:00
db:PACKETSTORMid:135250date:2016-01-14T17:27:54
db:PACKETSTORMid:135281date:2016-01-15T13:34:46
db:PACKETSTORMid:138552date:2016-08-30T14:19:12
db:PACKETSTORMid:136346date:2016-03-22T15:18:02
db:PACKETSTORMid:135283date:2016-01-18T04:26:08
db:PACKETSTORMid:135263date:2016-01-15T00:04:21
db:CNNVDid:CNNVD-201601-249date:2016-01-15T00:00:00
db:NVDid:CVE-2016-0777date:2016-01-14T22:59:01.140