CVE-2014-2653
OpenSSH < 6.6 - SSHFP DNS RR Check Bypass via Unacceptable HostCertificate
Title source: llmDescription
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
References (16)
Core 16
Core References
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2164-1
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59855
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0425.html
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0166.html
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=141576985122836&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/66459
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:095
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2014/03/26/7
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/133537.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2014/dsa-2894
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1552.html
Various Sources x_refsource_confirm
http://aix.software.ibm.com/aix/efixes/security/openssh_advisory4.asc
Exploit x_refsource_confirm
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742513
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134026.html
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2014:068
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
Scores
EPSS
0.0289
EPSS Percentile
86.5%
Details
CWE
CWE-20
Status
published
Products (7)
openbsd/openssh
6.0
openbsd/openssh
6.1
openbsd/openssh
6.2
openbsd/openssh
6.3
openbsd/openssh
6.4
openbsd/openssh
6.5
openbsd/openssh
< 6.6
Published
Mar 27, 2014
Tracked Since
Feb 18, 2026