Description
ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.openssh.com/txt/portable-keysign-rand-helper.adv
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=755640
Scores
EPSS
0.0006
EPSS Percentile
20.0%
Details
CWE
CWE-200
Status
published
Products (50)
openbsd/openssh
1.2
openbsd/openssh
1.2.1
openbsd/openssh
1.2.2
openbsd/openssh
1.2.3
openbsd/openssh
1.2.27
openbsd/openssh
1.3
openbsd/openssh
1.5
openbsd/openssh
1.5.7
openbsd/openssh
1.5.8
openbsd/openssh
2
... and 40 more
Published
Feb 03, 2014
Tracked Since
Feb 18, 2026