Fluid Attacks Database

Description

The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly maintain connection file descriptors, which allows remote servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by requesting many forwardings.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 14	openssh	>=0 <1:7.1p2-1	1:7.1p2-1
debian 12	openssh	>=0 <1:7.1p2-1	1:7.1p2-1
debian 11	openssh	>=0 <1:7.1p2-1	1:7.1p2-1
debian 13	openssh	>=0 <1:7.1p2-1	1:7.1p2-1
rpm rhel7	openssh	<0:6.6.1p1-23.el7_2	0:6.6.1p1-23.el7_2

Aliases

1. CVE-2016-07782. NVD-2016-07783. OSV-DEBIAN-2016-07784. OSV-2016-07785. SECURITY-TRACKER-CVE-2016-0778

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.