Summary authfile.c in sshd in OpenSSH does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging acce...
Summary sshd in OpenSSH, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serv...
Summary Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socke...
SamPirok
on:
Security Advisory: SA-2022-004 – Spring Framework
