Описание
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 1:9.6p1-3ubuntu1 |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/bionic | released | 1:7.6p1-4ubuntu0.7+esm3 |
| esm-infra/focal | not-affected | 1:8.2p1-4ubuntu0.11 |
| esm-infra/xenial | released | 1:7.2p2-4ubuntu2.10+esm6 |
| fips-preview/jammy | released | 1:8.9p1-3ubuntu0.6 |
| fips-updates/bionic | released | 1:7.9p1-10~ubuntu18.04.fips.0.9 |
| fips-updates/focal | released | 1:8.2p1-4ubuntu0.fips.0.11 |
| fips-updates/jammy | released | 1:8.9p1-3ubuntu0.6 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | ignored | |
| esm-apps/bionic | ignored | |
| esm-apps/focal | ignored | |
| esm-apps/jammy | ignored | |
| esm-apps/noble | ignored | |
| focal | ignored | |
| jammy | ignored | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needed |
Показывать по
6.5 Medium
CVSS3
Связанные уязвимости
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
In ssh in OpenSSH before 9.6, OS command injection might occur if a us ...
6.5 Medium
CVSS3