suse · CVE-2016-0777

Quick triage

Priority: critical 公開: 2021-05-30 13:37:16 UTC Updated: 2026-04-18 18:04:11 UTC

参照: Official suse advisory, NVD, CVE.org · CVE 詳細

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-0777 severity critical: SUSE including 348 source package names (amazon/suse-sles-15-sp1-chost-byos-v20210304-hvm-ssd-x86_64, amazon/suse-sles-15-sp1-chost-byos-v20220127-hvm-ssd-x86_64, …), 415 product×package rows across 52 product lines (SUSE Liberty Linux 7, SUSE Linux Enterprise Desktop 11 SP3, … (52 product lines)): Fixed 258, Known Affected 157.

Description:

The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.

cvelogic Threat Intelligence