Double Free

Affecting openssh package, versions <8.3_p1-r2

Report new vulnerabilities
Do your applications use this vulnerable package? Test your applications

NVD Description

Note: Versions mentioned in the description apply to the upstream openssh package. See Remediation section below for Alpine:3.12 relevant versions.

ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.

Remediation

Upgrade Alpine:3.12 openssh to version 8.3_p1-r2 or higher.

References

CVSS Score

7.1
high severity
  • Attack Vector
    Network
  • Attack Complexity
    High
  • Privileges Required
    Low
  • User Interaction
    Required
  • Scope
    Unchanged
  • Confidentiality
    High
  • Integrity
    High
  • Availability
    High
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
CVE
CVE-2021-28041
CWE
CWE-415
Snyk ID
SNYK-ALPINE312-OPENSSH-1088984
Disclosed
05 Mar, 2021
Published
25 Mar, 2021