FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-12 06:36:57 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
6a2cfcdc-9dea-11e6-a298-14dae9d210b8	FreeBSD -- OpenSSH Remote Denial of Service vulnerability Problem Description: When processing the SSH_MSG_KEXINIT message, the server could allocate up to a few hundreds of megabytes of memory per each connection, before any authentication take place. Impact: A remote attacker may be able to cause a SSH server to allocate an excessive amount of memory. Note that the default MaxStartups setting on FreeBSD will limit the effectiveness of this attack. Discovery 2016-10-19 Entry 2016-10-29 Modified 2016-11-02 openssh-portable < 7.3p1_1 FreeBSD ge 11.0 lt 11.0_3 ge 10.3 lt 10.3_12 http://seclists.org/oss-sec/2016/q4/191 CVE-2016-8858 SA-16:33.openssh

VuXML ID

Description

6a2cfcdc-9dea-11e6-a298-14dae9d210b8

FreeBSD -- OpenSSH Remote Denial of Service vulnerability

Problem Description:

When processing the SSH_MSG_KEXINIT message, the server could allocate up to a few hundreds of megabytes of memory per each connection, before any authentication take place.

Impact:

A remote attacker may be able to cause a SSH server to allocate an excessive amount of memory. Note that the default MaxStartups setting on FreeBSD will limit the effectiveness of this attack.

Discovery 2016-10-19
Entry 2016-10-29
Modified 2016-11-02
openssh-portable

< 7.3p1_1

FreeBSD

ge 11.0 lt 11.0_3

ge 10.3 lt 10.3_12

http://seclists.org/oss-sec/2016/q4/191
CVE-2016-8858
SA-16:33.openssh