CVE-2016-10708

sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.

Published : 2018-01-21 22:29 Updated : 2019-06-26 08:15

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Openbsd Openssh - cpe:/a:openbsd:openssh:-
Openbsd Openssh 1.2 cpe:/a:openbsd:openssh:1.2
Openbsd Openssh 1.2.1 cpe:/a:openbsd:openssh:1.2.1
Openbsd Openssh 1.2.2 cpe:/a:openbsd:openssh:1.2.2
Openbsd Openssh 1.2.3 cpe:/a:openbsd:openssh:1.2.3
Openbsd Openssh 1.2.27 cpe:/a:openbsd:openssh:1.2.27
Openbsd Openssh 1.3 cpe:/a:openbsd:openssh:1.3
Openbsd Openssh 1.5 cpe:/a:openbsd:openssh:1.5
Openbsd Openssh 1.5.7 cpe:/a:openbsd:openssh:1.5.7
Openbsd Openssh 1.5.8 cpe:/a:openbsd:openssh:1.5.8
Openbsd Openssh 2 cpe:/a:openbsd:openssh:2
Openbsd Openssh 2.1 cpe:/a:openbsd:openssh:2.1
Openbsd Openssh 2.1.1 cpe:/a:openbsd:openssh:2.1.1
Openbsd Openssh 2.2 cpe:/a:openbsd:openssh:2.2
Openbsd Openssh 2.3 cpe:/a:openbsd:openssh:2.3
Openbsd Openssh 2.3.1 cpe:/a:openbsd:openssh:2.3.1
Openbsd Openssh 2.5 cpe:/a:openbsd:openssh:2.5
Openbsd Openssh 2.5.1 cpe:/a:openbsd:openssh:2.5.1
Openbsd Openssh 2.5.2 cpe:/a:openbsd:openssh:2.5.2
Openbsd Openssh 2.9 cpe:/a:openbsd:openssh:2.9
Openbsd Openssh 2.9.9 cpe:/a:openbsd:openssh:2.9.9
Openbsd Openssh 2.9.9p2 cpe:/a:openbsd:openssh:2.9.9p2
Openbsd Openssh 2.9p1 cpe:/a:openbsd:openssh:2.9p1
Openbsd Openssh 2.9p2 cpe:/a:openbsd:openssh:2.9p2
Openbsd Openssh 3.0 cpe:/a:openbsd:openssh:3.0
Openbsd Openssh 3.0.1 cpe:/a:openbsd:openssh:3.0.1
Openbsd Openssh 3.0.1p1 cpe:/a:openbsd:openssh:3.0.1p1
Openbsd Openssh 3.0.2 cpe:/a:openbsd:openssh:3.0.2
Openbsd Openssh 3.0.2p1 cpe:/a:openbsd:openssh:3.0.2p1
Openbsd Openssh 3.0p1 cpe:/a:openbsd:openssh:3.0p1
Openbsd Openssh 3.1 cpe:/a:openbsd:openssh:3.1
Openbsd Openssh 3.1p1 cpe:/a:openbsd:openssh:3.1p1
Openbsd Openssh 3.2 cpe:/a:openbsd:openssh:3.2
Openbsd Openssh 3.2.2 cpe:/a:openbsd:openssh:3.2.2
Openbsd Openssh 3.2.2p1 cpe:/a:openbsd:openssh:3.2.2p1
Openbsd Openssh 3.2.3p1 cpe:/a:openbsd:openssh:3.2.3p1
Openbsd Openssh 3.3 cpe:/a:openbsd:openssh:3.3
Openbsd Openssh 3.3p1 cpe:/a:openbsd:openssh:3.3p1
Openbsd Openssh 3.4 cpe:/a:openbsd:openssh:3.4
Openbsd Openssh 3.4p1 cpe:/a:openbsd:openssh:3.4p1
Openbsd Openssh 3.5 cpe:/a:openbsd:openssh:3.5
Openbsd Openssh 3.5p1 cpe:/a:openbsd:openssh:3.5p1
Openbsd Openssh 3.6 cpe:/a:openbsd:openssh:3.6
Openbsd Openssh 3.6.1 cpe:/a:openbsd:openssh:3.6.1
Openbsd Openssh 3.6.1p1 cpe:/a:openbsd:openssh:3.6.1p1
Openbsd Openssh 3.6.1p2 cpe:/a:openbsd:openssh:3.6.1p2
Openbsd Openssh 3.7 cpe:/a:openbsd:openssh:3.7
Openbsd Openssh 3.7.1 cpe:/a:openbsd:openssh:3.7.1
Openbsd Openssh 3.7.1p1 cpe:/a:openbsd:openssh:3.7.1p1
Openbsd Openssh 3.7.1p2 cpe:/a:openbsd:openssh:3.7.1p2
Openbsd Openssh 3.8 cpe:/a:openbsd:openssh:3.8
Openbsd Openssh 3.8.1 cpe:/a:openbsd:openssh:3.8.1
Openbsd Openssh 3.8.1p1 cpe:/a:openbsd:openssh:3.8.1p1
Openbsd Openssh 3.9 cpe:/a:openbsd:openssh:3.9
Openbsd Openssh 3.9.1 cpe:/a:openbsd:openssh:3.9.1
Openbsd Openssh 3.9.1p1 cpe:/a:openbsd:openssh:3.9.1p1
Openbsd Openssh 4.0 cpe:/a:openbsd:openssh:4.0
Openbsd Openssh 4.0p1 cpe:/a:openbsd:openssh:4.0p1
Openbsd Openssh 4.1 cpe:/a:openbsd:openssh:4.1
Openbsd Openssh 4.1p1 cpe:/a:openbsd:openssh:4.1p1
Openbsd Openssh 4.2 cpe:/a:openbsd:openssh:4.2
Openbsd Openssh 4.2p1 cpe:/a:openbsd:openssh:4.2p1
Openbsd Openssh 4.3 cpe:/a:openbsd:openssh:4.3
Openbsd Openssh 4.3p1 cpe:/a:openbsd:openssh:4.3p1
Openbsd Openssh 4.3p2 cpe:/a:openbsd:openssh:4.3p2
Openbsd Openssh 4.4 cpe:/a:openbsd:openssh:4.4
Openbsd Openssh 4.4p1 cpe:/a:openbsd:openssh:4.4p1
Openbsd Openssh 4.5 cpe:/a:openbsd:openssh:4.5
Openbsd Openssh 4.6 cpe:/a:openbsd:openssh:4.6
Openbsd Openssh 4.7 cpe:/a:openbsd:openssh:4.7
Openbsd Openssh 4.7p1 cpe:/a:openbsd:openssh:4.7p1
Openbsd Openssh 4.8 cpe:/a:openbsd:openssh:4.8
Openbsd Openssh 4.9 cpe:/a:openbsd:openssh:4.9
Openbsd Openssh 5.0 cpe:/a:openbsd:openssh:5.0
Openbsd Openssh 5.0 cpe:/a:openbsd:openssh:5.0:p1
Openbsd Openssh 5.1 cpe:/a:openbsd:openssh:5.1
Openbsd Openssh 5.1 cpe:/a:openbsd:openssh:5.1:p1
Openbsd Openssh 5.2 cpe:/a:openbsd:openssh:5.2
Openbsd Openssh 5.2 cpe:/a:openbsd:openssh:5.2:p1
Openbsd Openssh 5.3 cpe:/a:openbsd:openssh:5.3
Openbsd Openssh 5.3 cpe:/a:openbsd:openssh:5.3:p1
Openbsd Openssh 5.4 cpe:/a:openbsd:openssh:5.4
Openbsd Openssh 5.4 cpe:/a:openbsd:openssh:5.4:p1
Openbsd Openssh 5.5 cpe:/a:openbsd:openssh:5.5
Openbsd Openssh 5.5 cpe:/a:openbsd:openssh:5.5:p1
Openbsd Openssh 5.6 cpe:/a:openbsd:openssh:5.6
Openbsd Openssh 5.6 cpe:/a:openbsd:openssh:5.6:p1
Openbsd Openssh 5.7 cpe:/a:openbsd:openssh:5.7
Openbsd Openssh 5.7 cpe:/a:openbsd:openssh:5.7:p1
Openbsd Openssh 5.8 cpe:/a:openbsd:openssh:5.8
Openbsd Openssh 5.8 cpe:/a:openbsd:openssh:5.8:p1
Openbsd Openssh 5.8p2 cpe:/a:openbsd:openssh:5.8p2
Openbsd Openssh 5.9 cpe:/a:openbsd:openssh:5.9
Openbsd Openssh 5.9 cpe:/a:openbsd:openssh:5.9:p1
Openbsd Openssh 6.0 cpe:/a:openbsd:openssh:6.0
Openbsd Openssh 6.0 cpe:/a:openbsd:openssh:6.0:p1
Openbsd Openssh 6.1 cpe:/a:openbsd:openssh:6.1
Openbsd Openssh 6.1 cpe:/a:openbsd:openssh:6.1:p1
Openbsd Openssh 6.2 cpe:/a:openbsd:openssh:6.2
Openbsd Openssh 6.2 cpe:/a:openbsd:openssh:6.2:p1
Openbsd Openssh 6.2 cpe:/a:openbsd:openssh:6.2:p2
Openbsd Openssh 6.3 cpe:/a:openbsd:openssh:6.3
Openbsd Openssh 6.3 cpe:/a:openbsd:openssh:6.3:p1
Openbsd Openssh 6.4 cpe:/a:openbsd:openssh:6.4
Openbsd Openssh 6.4 cpe:/a:openbsd:openssh:6.4:p1
Openbsd Openssh 6.5 cpe:/a:openbsd:openssh:6.5
Openbsd Openssh 6.5 cpe:/a:openbsd:openssh:6.5:p1
Openbsd Openssh 6.6 cpe:/a:openbsd:openssh:6.6
Openbsd Openssh 6.6 cpe:/a:openbsd:openssh:6.6:p1
Openbsd Openssh 6.7 cpe:/a:openbsd:openssh:6.7
Openbsd Openssh 6.7 cpe:/a:openbsd:openssh:6.7:p1
Openbsd Openssh 6.8 cpe:/a:openbsd:openssh:6.8
Openbsd Openssh 6.8 cpe:/a:openbsd:openssh:6.8:p1
Openbsd Openssh 6.9 cpe:/a:openbsd:openssh:6.9
Openbsd Openssh 6.9 cpe:/a:openbsd:openssh:6.9:p1
Openbsd Openssh 7.0 cpe:/a:openbsd:openssh:7.0
Openbsd Openssh 7.0 cpe:/a:openbsd:openssh:7.0:p1
Openbsd Openssh 7.1 cpe:/a:openbsd:openssh:7.1
Openbsd Openssh 7.1 cpe:/a:openbsd:openssh:7.1:p1
Openbsd Openssh 7.2 cpe:/a:openbsd:openssh:7.2:p2
Openbsd Openssh 7.3 cpe:/a:openbsd:openssh:7.3
Openbsd Openssh 7.3 cpe:/a:openbsd:openssh:7.3:p1
Debian Debian Linux 7.0 cpe:/o:debian:debian_linux:7.0
Openbsd Openssh 7.1 cpe:/a:openbsd:openssh:7.1:p2
Netapp Cloud Backup - cpe:/a:netapp:cloud_backup:-
Netapp Data Ontap - cpe:/a:netapp:data_ontap:-::~~~7-mode~~
Netapp Data Ontap Edge - cpe:/a:netapp:data_ontap_edge:-
Netapp Service Processor - cpe:/a:netapp:service_processor:-
Netapp Storagegrid - cpe:/a:netapp:storagegrid:-
Netapp Storagegrid Webscale - cpe:/a:netapp:storagegrid_webscale:-
Netapp Vasa Provider - cpe:/a:netapp:vasa_provider:-
Canonical Ubuntu Linux 14.04 cpe:/o:canonical:ubuntu_linux:14.04::~~lts~~~
Canonical Ubuntu Linux 16.04 cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~
Canonical Ubuntu Linux 18.04 cpe:/o:canonical:ubuntu_linux:18.04
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
Netapp Clustered Data Ontap - cpe:/o:netapp:clustered_data_ontap:-
  1. Canonical (1) Search CVE
    1. Ubuntu Linux (3) Search CVE
      1. 14.04
      2. 16.04
      3. 18.04
  2. Netapp (8) Search CVE
    1. Clustered Data Ontap (1) Search CVE
      1. -
    2. Service Processor (1) Search CVE
      1. -
    3. Storagegrid (1) Search CVE
      1. -
    4. Data Ontap (1) Search CVE
      1. -
    5. Cloud Backup (1) Search CVE
      1. -
    6. Storagegrid Webscale (1) Search CVE
      1. -
    7. Data Ontap Edge (1) Search CVE
      1. -
    8. Vasa Provider (1) Search CVE
      1. -
  3. Debian (1) Search CVE
    1. Debian Linux (2) Search CVE
      1. 7.0
      2. 8.0
  4. Openbsd (1) Search CVE
    1. Openssh (98) Search CVE
      1. -
      2. 1.2
      3. 1.2.1
      4. 1.2.2
      5. 1.2.3
      6. 1.2.27
      7. 1.3
      8. 1.5
      9. 1.5.7
      10. 1.5.8
      11. 2
      12. 2.1
      13. 2.1.1
      14. 2.2
      15. 2.3
      16. 2.3.1
      17. 2.5
      18. 2.5.1
      19. 2.5.2
      20. 2.9
      21. 2.9.9
      22. 2.9.9p2
      23. 2.9p1
      24. 2.9p2
      25. 3.0
      26. 3.0.1
      27. 3.0.1p1
      28. 3.0.2
      29. 3.0.2p1
      30. 3.0p1
      31. 3.1
      32. 3.1p1
      33. 3.2
      34. 3.2.2
      35. 3.2.2p1
      36. 3.2.3p1
      37. 3.3
      38. 3.3p1
      39. 3.4
      40. 3.4p1
      41. 3.5
      42. 3.5p1
      43. 3.6
      44. 3.6.1
      45. 3.6.1p1
      46. 3.6.1p2
      47. 3.7
      48. 3.7.1
      49. 3.7.1p1
      50. 3.7.1p2
      51. 3.8
      52. 3.8.1
      53. 3.8.1p1
      54. 3.9
      55. 3.9.1
      56. 3.9.1p1
      57. 4.0
      58. 4.0p1
      59. 4.1
      60. 4.1p1
      61. 4.2
      62. 4.2p1
      63. 4.3
      64. 4.3p1
      65. 4.3p2
      66. 4.4
      67. 4.4p1
      68. 4.5
      69. 4.6
      70. 4.7
      71. 4.7p1
      72. 4.8
      73. 4.9
      74. 5.0
      75. 5.1
      76. 5.2
      77. 5.3
      78. 5.4
      79. 5.5
      80. 5.6
      81. 5.7
      82. 5.8
      83. 5.8p2
      84. 5.9
      85. 6.0
      86. 6.1
      87. 6.2
      88. 6.3
      89. 6.4
      90. 6.5
      91. 6.6
      92. 6.7
      93. 6.8
      94. 6.9
      95. 7.0
      96. 7.1
      97. 7.2
      98. 7.3

CWE

ID Name Description Links
CWE-476 NULL Pointer Dereference A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. CVE

History of changes

Date Event
2019-06-26 08:15
2019-05-01 17:53
2018-11-07 11:29
2018-09-11 10:29
2018-04-25 01:29
2018-02-08 13:53
2018-02-04 02:29
2018-01-26 02:29
2018-01-21 22:29

New CVE