Linux Today: Linux News On Internet Time.





More on LinuxToday


How To Patch and Protect OpenSSH Client Vulnerability CVE-0216-0777 and CVE-0216-0778

Jan 15, 2016, 10:23 (0 Talkback[s])
(Other stories by Anonymous)

A serious security problem has been found and patched in the OpenSSH software. Two vulnerabilities have been discovered in OpenSSH on 14/Jan/2016. It can leak private keys to malicious servers and A buffer overflow leading to file descriptor leak, can also be exploited by a rogue SSH server. A man-in-the-middle kind of attack identified and fixed in OpenSSH are dubbed CVE-2016-0777 and CVE-2016-0778. How do I fix OpenSSH's client vulnerability on a Linux or Unix-like operating system?

Complete Story